Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-45590 (GCVE-0-2024-45590)
Vulnerability from cvelistv5
Published
2024-09-10 15:54
Modified
2024-09-10 18:47
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-405 - Asymmetric Resource Consumption (Amplification)
Summary
body-parser is Node.js body parsing middleware. body-parser <1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service. This issue is patched in 1.20.3.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| expressjs | body-parser |
Version: < 1.20.3 |
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:expressjs:body-parser:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "body-parser",
"vendor": "expressjs",
"versions": [
{
"lessThan": "1.20.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-45590",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-09-10T18:42:41.773305Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-09-10T18:47:22.965Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "body-parser",
"vendor": "expressjs",
"versions": [
{
"status": "affected",
"version": "\u003c 1.20.3"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "body-parser is Node.js body parsing middleware. body-parser \u003c1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service. This issue is patched in 1.20.3."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-405",
"description": "CWE-405: Asymmetric Resource Consumption (Amplification)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-09-10T15:54:02.330Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
},
{
"name": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
}
],
"source": {
"advisory": "GHSA-qwcr-r2fm-qrc7",
"discovery": "UNKNOWN"
},
"title": "body-parser vulnerable to denial of service when url encoding is enabled"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-45590",
"datePublished": "2024-09-10T15:54:02.330Z",
"dateReserved": "2024-09-02T16:00:02.422Z",
"dateUpdated": "2024-09-10T18:47:22.965Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-45590\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-09-10T16:15:21.083\",\"lastModified\":\"2024-09-20T16:26:44.977\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"body-parser is Node.js body parsing middleware. body-parser \u003c1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service. This issue is patched in 1.20.3.\"},{\"lang\":\"es\",\"value\":\"body-parser es un middleware de an\u00e1lisis de cuerpo de Node.js. body-parser en versiones anteriores a la 1.20.3 es vulnerable a la denegaci\u00f3n de servicio cuando la codificaci\u00f3n de URL est\u00e1 habilitada. Un actor malintencionado que utilice un payload especialmente manipulado podr\u00eda inundar el servidor con una gran cantidad de solicitudes, lo que provocar\u00eda una denegaci\u00f3n de servicio. Este problema se solucion\u00f3 en la versi\u00f3n 1.20.3.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-405\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openjsf:body-parser:*:*:*:*:*:node.js:*:*\",\"versionEndExcluding\":\"1.20.3\",\"matchCriteriaId\":\"42A6B188-985D-4F15-B31B-46D67F4E3F07\"}]}]}],\"references\":[{\"url\":\"https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-45590\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-10T18:42:41.773305Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:expressjs:body-parser:*:*:*:*:*:*:*:*\"], \"vendor\": \"expressjs\", \"product\": \"body-parser\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.20.3\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-10T18:45:10.928Z\"}}], \"cna\": {\"title\": \"body-parser vulnerable to denial of service when url encoding is enabled\", \"source\": {\"advisory\": \"GHSA-qwcr-r2fm-qrc7\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"expressjs\", \"product\": \"body-parser\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 1.20.3\"}]}], \"references\": [{\"url\": \"https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7\", \"name\": \"https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce\", \"name\": \"https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"body-parser is Node.js body parsing middleware. body-parser \u003c1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service. This issue is patched in 1.20.3.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-405\", \"description\": \"CWE-405: Asymmetric Resource Consumption (Amplification)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-09-10T15:54:02.330Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-45590\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-09-10T18:47:22.965Z\", \"dateReserved\": \"2024-09-02T16:00:02.422Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-09-10T15:54:02.330Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
fkie_cve-2024-45590
Vulnerability from fkie_nvd
Published
2024-09-10 16:15
Modified
2024-09-20 16:26
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
body-parser is Node.js body parsing middleware. body-parser <1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service. This issue is patched in 1.20.3.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| openjsf | body-parser | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:openjsf:body-parser:*:*:*:*:*:node.js:*:*",
"matchCriteriaId": "42A6B188-985D-4F15-B31B-46D67F4E3F07",
"versionEndExcluding": "1.20.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "body-parser is Node.js body parsing middleware. body-parser \u003c1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service. This issue is patched in 1.20.3."
},
{
"lang": "es",
"value": "body-parser es un middleware de an\u00e1lisis de cuerpo de Node.js. body-parser en versiones anteriores a la 1.20.3 es vulnerable a la denegaci\u00f3n de servicio cuando la codificaci\u00f3n de URL est\u00e1 habilitada. Un actor malintencionado que utilice un payload especialmente manipulado podr\u00eda inundar el servidor con una gran cantidad de solicitudes, lo que provocar\u00eda una denegaci\u00f3n de servicio. Este problema se solucion\u00f3 en la versi\u00f3n 1.20.3."
}
],
"id": "CVE-2024-45590",
"lastModified": "2024-09-20T16:26:44.977",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2024-09-10T16:15:21.083",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch"
],
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"source": "security-advisories@github.com",
"tags": [
"Vendor Advisory"
],
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-405"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
ghsa-qwcr-r2fm-qrc7
Vulnerability from github
Published
2024-09-10 15:52
Modified
2024-09-10 19:01
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
8.7 (High) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
8.7 (High) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
VLAI Severity ?
Summary
body-parser vulnerable to denial of service when url encoding is enabled
Details
Impact
body-parser <1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service.
Patches
this issue is patched in 1.20.3
References
{
"affected": [
{
"package": {
"ecosystem": "npm",
"name": "body-parser"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.20.3"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-45590"
],
"database_specific": {
"cwe_ids": [
"CWE-405"
],
"github_reviewed": true,
"github_reviewed_at": "2024-09-10T15:52:39Z",
"nvd_published_at": "2024-09-10T16:15:21Z",
"severity": "HIGH"
},
"details": "### Impact\n\nbody-parser \u003c1.20.3 is vulnerable to denial of service when url encoding is enabled. A malicious actor using a specially crafted payload could flood the server with a large number of requests, resulting in denial of service.\n\n### Patches\n\nthis issue is patched in 1.20.3\n\n### References\n",
"id": "GHSA-qwcr-r2fm-qrc7",
"modified": "2024-09-10T19:01:08Z",
"published": "2024-09-10T15:52:39Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"type": "WEB",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"type": "PACKAGE",
"url": "https://github.com/expressjs/body-parser"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"type": "CVSS_V4"
}
],
"summary": "body-parser vulnerable to denial of service when url encoding is enabled"
}
rhsa-2024_9583
Vulnerability from csaf_redhat
Published
2024-11-13 18:00
Modified
2025-01-06 21:38
Summary
Red Hat Security Advisory: ACS 4.4 enhancement update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security
(RHACS). The updated image includes a bug fix and security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.4.6 introduces the following changes:
Bug fix:
* Fixed an issue where you could not view detailed scan results for certain images in RHACS because the page redirected to an error after a brief display. (ROX-24326)
Security fixes:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910)
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS). The updated image includes a bug fix and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.4.6 introduces the following changes:\n\nBug fix:\n\n* Fixed an issue where you could not view detailed scan results for certain images in RHACS because the page redirected to an error after a brief display. (ROX-24326)\n\nSecurity fixes:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910)\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9583",
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html",
"url": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "ROX-24326",
"url": "https://issues.redhat.com/browse/ROX-24326"
},
{
"category": "external",
"summary": "ROX-26880",
"url": "https://issues.redhat.com/browse/ROX-26880"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9583.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.4 enhancement update",
"tracking": {
"current_release_date": "2025-01-06T21:38:39+00:00",
"generator": {
"date": "2025-01-06T21:38:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:9583",
"initial_release_date": "2024-11-13T18:00:45+00:00",
"revision_history": [
{
"date": "2024-11-13T18:00:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-13T18:00:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T21:38:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.4 for RHEL 8",
"product": {
"name": "RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
rhsa-2024_9885
Vulnerability from csaf_redhat
Published
2024-11-18 15:17
Modified
2025-01-06 19:04
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.0
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.0",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9885",
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1713",
"url": "https://issues.redhat.com/browse/TC-1713"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1721",
"url": "https://issues.redhat.com/browse/TC-1721"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1757",
"url": "https://issues.redhat.com/browse/TC-1757"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1769",
"url": "https://issues.redhat.com/browse/TC-1769"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1770",
"url": "https://issues.redhat.com/browse/TC-1770"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1799",
"url": "https://issues.redhat.com/browse/TC-1799"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1800",
"url": "https://issues.redhat.com/browse/TC-1800"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1801",
"url": "https://issues.redhat.com/browse/TC-1801"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1810",
"url": "https://issues.redhat.com/browse/TC-1810"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1815",
"url": "https://issues.redhat.com/browse/TC-1815"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1817",
"url": "https://issues.redhat.com/browse/TC-1817"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1818",
"url": "https://issues.redhat.com/browse/TC-1818"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1841",
"url": "https://issues.redhat.com/browse/TC-1841"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1842",
"url": "https://issues.redhat.com/browse/TC-1842"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1846",
"url": "https://issues.redhat.com/browse/TC-1846"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1847",
"url": "https://issues.redhat.com/browse/TC-1847"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1855",
"url": "https://issues.redhat.com/browse/TC-1855"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1857",
"url": "https://issues.redhat.com/browse/TC-1857"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9885.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0",
"tracking": {
"current_release_date": "2025-01-06T19:04:06+00:00",
"generator": {
"date": "2025-01-06T19:04:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:9885",
"initial_release_date": "2024-11-18T15:17:19+00:00",
"revision_history": [
{
"date": "2024-11-18T15:17:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-18T15:17:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T19:04:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-guac-rhel9@sha256%3A6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.0-1730929100"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T15:17:19+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T15:17:19+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2024_7726
Vulnerability from csaf_redhat
Published
2024-10-07 09:24
Modified
2025-01-06 19:01
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.2
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.6.2
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
* express: Improper Input Handling in Express Redirects (CVE-2024-43796)
* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule
(CVE-2024-43788)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* envoy: Malicious log injection via access logs (CVE-2024-45808)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
* envoy: Envoy crashes for `LocalReply` in HTTP async client (CVE-2024-45810)
* curl: libcurl: ASN.1 date parser overread (CVE-2024-7264)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.6.2\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a\ndetailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n* express: Improper Input Handling in Express Redirects (CVE-2024-43796)\n* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule\n(CVE-2024-43788)\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* envoy: Malicious log injection via access logs (CVE-2024-45808)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n* envoy: Envoy crashes for `LocalReply` in HTTP async client (CVE-2024-45810)\n* curl: libcurl: ASN.1 date parser overread (CVE-2024-7264)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7726",
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2301888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301888"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "2313685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313685"
},
{
"category": "external",
"summary": "2313687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313687"
},
{
"category": "external",
"summary": "OSSM-3337",
"url": "https://issues.redhat.com/browse/OSSM-3337"
},
{
"category": "external",
"summary": "OSSM-8001",
"url": "https://issues.redhat.com/browse/OSSM-8001"
},
{
"category": "external",
"summary": "OSSM-8099",
"url": "https://issues.redhat.com/browse/OSSM-8099"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7726.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.2",
"tracking": {
"current_release_date": "2025-01-06T19:01:56+00:00",
"generator": {
"date": "2025-01-06T19:01:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:7726",
"initial_release_date": "2024-10-07T09:24:48+00:00",
"revision_history": [
{
"date": "2024-10-07T09:24:48+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-07T09:24:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T19:01:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 8",
"product": {
"name": "RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el8"
}
}
},
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 9",
"product": {
"name": "RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7264",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-07-31T04:33:09+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2301888"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libcurl, where libcurl\u0027s ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Time field. If a syntactically incorrect field is given, the parser can use -1 for the length of the *time fraction*, leading to a `strlen()` performed on a pointer to a heap buffer area that is not purposely NULL terminated.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "curl: libcurl: ASN.1 date parser overread",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7264"
},
{
"category": "external",
"summary": "RHBZ#2301888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301888"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7264",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7264"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixMSQL"
}
],
"release_date": "2024-07-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "curl: libcurl: ASN.1 date parser overread"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"acknowledgments": [
{
"names": [
"Mike Whale"
]
},
{
"names": [
"James Force"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2024-45806",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2024-09-20T00:40:20.976812+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313683"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Envoy that allows external clients to manipulate Envoy headers, potentially leading to unauthorized access or other malicious actions within the mesh. This issue arises due to Envoy\u0027s default configuration of internal trust boundaries, which considers all RFC1918 private address ranges as internal. The default behavior for handling internal addresses in Envoy has been changed. Previously, RFC1918 IP addresses were automatically considered internal, even if the internal_address_config was empty. The default configuration of Envoy will continue to trust internal addresses while in this release and it will not trust them by default in next release. If you have tooling such as probes on your private network which need to be treated as trusted such as changing arbitrary x-envoy headers, please explicitly include those addresses or CIDR ranges into `internal_address_config`. Successful exploitation could allow attackers to bypass security controls, access sensitive data, or disrupt services within the mesh, like Istio.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Potential to manipulate `x-envoy` headers from external sources",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat\u0027s CVSS score and impact are specific to our product and may not match those of upstream. This is due to how envoy is configured and used within our OpenShift Service Mesh product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45806"
},
{
"category": "external",
"summary": "RHBZ#2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45806"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf"
}
],
"release_date": "2024-09-20T00:15:02.293000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by configuring envoy to treat all IPs as external. This is done by setting the internal_address_config range for envoy to `0.0.0.0/32`.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Potential to manipulate `x-envoy` headers from external sources"
},
{
"cve": "CVE-2024-45808",
"cwe": {
"id": "CWE-117",
"name": "Improper Output Neutralization for Logs"
},
"discovery_date": "2024-09-20T00:40:26.266584+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in envoy. Affected versions of envoy may allow malicious attackers to inject unexpected content into access logs. This is achieved by exploiting the lack of validation for the `REQUESTED_SERVER_NAME` field for access loggers.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Malicious log injection via access logs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in Envoy that allows attackers to inject unexpected content into access logs is classified as moderate severity rather than important because the impact is primarily related to log integrity rather than direct exploitation of the system or data breaches, which lowers the overall risk profile. While log tampering can lead to misleading information, it does not directly compromise the application\u2019s functionality or security boundaries. Additionally, the attack requires specific conditions to succeed, relying on the lack of validation for the `REQUESTED_SERVER_NAME` field, which may not be present in all configurations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45808"
},
{
"category": "external",
"summary": "RHBZ#2313685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45808",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45808"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45808",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45808"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-p222-xhp9-39rc",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-p222-xhp9-39rc"
}
],
"release_date": "2024-09-20T00:15:02.733000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Malicious log injection via access logs"
},
{
"cve": "CVE-2024-45810",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2024-09-20T00:40:31.483825+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy. Envoy will crash when the http async client is handling `sendLocalReply` under some circumstances, such as websocket upgrade and requests mirroring. The http async client will crash during the `sendLocalReply()` in http async client if the http async client is duplicating the status code or if the destruction of the router is called at the destructor of the async stream while the stream is deferred or deleted. This issue occurs when the stream decoder is destroyed but it\u0027s reference is called in `router.onDestroy()`, causing a segment fault. This will impact ext_authz if the `upgrade` and `connection` header are allowed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Envoy crashes for `LocalReply` in HTTP async client",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in Envoy related to the HTTP async client crashing during `sendLocalReply()` is classified as moderate severity rather than important due to the crash is contingent on particular scenarios, such as websocket upgrades and request mirroring, which may not be common in all deployments. Additionally, while the segmentation fault can disrupt service, it does not compromise data integrity or expose sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45810"
},
{
"category": "external",
"summary": "RHBZ#2313687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45810",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45810"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-qm74-x36m-555q",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-qm74-x36m-555q"
}
],
"release_date": "2024-09-20T00:15:03.153000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Envoy crashes for `LocalReply` in HTTP async client"
}
]
}
RHSA-2024:9885
Vulnerability from csaf_redhat
Published
2024-11-18 15:17
Modified
2025-10-08 15:44
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.0
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.0",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9885",
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1713",
"url": "https://issues.redhat.com/browse/TC-1713"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1721",
"url": "https://issues.redhat.com/browse/TC-1721"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1757",
"url": "https://issues.redhat.com/browse/TC-1757"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1769",
"url": "https://issues.redhat.com/browse/TC-1769"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1770",
"url": "https://issues.redhat.com/browse/TC-1770"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1799",
"url": "https://issues.redhat.com/browse/TC-1799"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1800",
"url": "https://issues.redhat.com/browse/TC-1800"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1801",
"url": "https://issues.redhat.com/browse/TC-1801"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1810",
"url": "https://issues.redhat.com/browse/TC-1810"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1815",
"url": "https://issues.redhat.com/browse/TC-1815"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1817",
"url": "https://issues.redhat.com/browse/TC-1817"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1818",
"url": "https://issues.redhat.com/browse/TC-1818"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1841",
"url": "https://issues.redhat.com/browse/TC-1841"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1842",
"url": "https://issues.redhat.com/browse/TC-1842"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1846",
"url": "https://issues.redhat.com/browse/TC-1846"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1847",
"url": "https://issues.redhat.com/browse/TC-1847"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1855",
"url": "https://issues.redhat.com/browse/TC-1855"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1857",
"url": "https://issues.redhat.com/browse/TC-1857"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9885.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0",
"tracking": {
"current_release_date": "2025-10-08T15:44:57+00:00",
"generator": {
"date": "2025-10-08T15:44:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:9885",
"initial_release_date": "2024-11-18T15:17:19+00:00",
"revision_history": [
{
"date": "2024-11-18T15:17:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:51:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-08T15:44:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-guac-rhel9@sha256%3A6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.0-1730929100"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T15:17:19+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T15:17:19+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2024:7726
Vulnerability from csaf_redhat
Published
2024-10-07 09:24
Modified
2025-10-31 12:41
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.2
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.6.2
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
* express: Improper Input Handling in Express Redirects (CVE-2024-43796)
* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule
(CVE-2024-43788)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* envoy: Malicious log injection via access logs (CVE-2024-45808)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
* envoy: Envoy crashes for `LocalReply` in HTTP async client (CVE-2024-45810)
* curl: libcurl: ASN.1 date parser overread (CVE-2024-7264)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.6.2\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a\ndetailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n* express: Improper Input Handling in Express Redirects (CVE-2024-43796)\n* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule\n(CVE-2024-43788)\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* envoy: Malicious log injection via access logs (CVE-2024-45808)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n* envoy: Envoy crashes for `LocalReply` in HTTP async client (CVE-2024-45810)\n* curl: libcurl: ASN.1 date parser overread (CVE-2024-7264)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7726",
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2301888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301888"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "2313685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313685"
},
{
"category": "external",
"summary": "2313687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313687"
},
{
"category": "external",
"summary": "OSSM-3337",
"url": "https://issues.redhat.com/browse/OSSM-3337"
},
{
"category": "external",
"summary": "OSSM-8001",
"url": "https://issues.redhat.com/browse/OSSM-8001"
},
{
"category": "external",
"summary": "OSSM-8099",
"url": "https://issues.redhat.com/browse/OSSM-8099"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7726.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.2",
"tracking": {
"current_release_date": "2025-10-31T12:41:48+00:00",
"generator": {
"date": "2025-10-31T12:41:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:7726",
"initial_release_date": "2024-10-07T09:24:48+00:00",
"revision_history": [
{
"date": "2024-10-07T09:24:48+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-07T09:24:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:41:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 8",
"product": {
"name": "RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el8"
}
}
},
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 9",
"product": {
"name": "RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7264",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-07-31T04:33:09+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2301888"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libcurl, where libcurl\u0027s ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Time field. If a syntactically incorrect field is given, the parser can use -1 for the length of the *time fraction*, leading to a `strlen()` performed on a pointer to a heap buffer area that is not purposely NULL terminated.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "curl: libcurl: ASN.1 date parser overread",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability is classified as low severity because it primarily results in a heap buffer over-read rather than a direct memory corruption or code execution risk. Since the ASN.1 parsing occurs after a successful TLS handshake, the malformed certificate must first bypass the TLS library\u0027s validation, which significantly reduces the likelihood of exploitation. \n\nAdditionally, the impact is limited to a potential crash or unintended heap data exposure through CURLINFO_CERTINFO, but not arbitrary code execution. The requirement for a specific TLS backend configuration and the controlled nature of the memory read further minimize its exploitability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7264"
},
{
"category": "external",
"summary": "RHBZ#2301888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301888"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7264",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7264"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixMSQL"
}
],
"release_date": "2024-07-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\n\nRed Hat build of curl uses OpenSSL, which is not included in the affected list of GnuTLS, Schannel, Secure Transport and mbedTLS. Inspect which TLS backend is in use by running:\n\n$ curl --version\n\nCheck the reference for curl handled by the maintainers which may contain more relevant information around this vulnerability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "curl: libcurl: ASN.1 date parser overread"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"acknowledgments": [
{
"names": [
"Mike Whale"
]
},
{
"names": [
"James Force"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2024-45806",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2024-09-20T00:40:20.976812+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313683"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Envoy that allows external clients to manipulate Envoy headers, potentially leading to unauthorized access or other malicious actions within the mesh. This issue arises due to Envoy\u0027s default configuration of internal trust boundaries, which considers all RFC1918 private address ranges as internal. The default behavior for handling internal addresses in Envoy has been changed. Previously, RFC1918 IP addresses were automatically considered internal, even if the internal_address_config was empty. The default configuration of Envoy will continue to trust internal addresses while in this release and it will not trust them by default in next release. If you have tooling such as probes on your private network which need to be treated as trusted such as changing arbitrary x-envoy headers, please explicitly include those addresses or CIDR ranges into `internal_address_config`. Successful exploitation could allow attackers to bypass security controls, access sensitive data, or disrupt services within the mesh, like Istio.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Potential to manipulate `x-envoy` headers from external sources",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat\u0027s CVSS score and impact are specific to our product and may not match those of upstream. This is due to how envoy is configured and used within our OpenShift Service Mesh product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45806"
},
{
"category": "external",
"summary": "RHBZ#2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45806"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf"
}
],
"release_date": "2024-09-20T00:15:02.293000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by configuring envoy to treat all IPs as external. This is done by setting the internal_address_config range for envoy to `0.0.0.0/32`.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Potential to manipulate `x-envoy` headers from external sources"
},
{
"cve": "CVE-2024-45808",
"cwe": {
"id": "CWE-117",
"name": "Improper Output Neutralization for Logs"
},
"discovery_date": "2024-09-20T00:40:26.266584+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in envoy. Affected versions of envoy may allow malicious attackers to inject unexpected content into access logs. This is achieved by exploiting the lack of validation for the `REQUESTED_SERVER_NAME` field for access loggers.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Malicious log injection via access logs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in Envoy that allows attackers to inject unexpected content into access logs is classified as moderate severity rather than important because the impact is primarily related to log integrity rather than direct exploitation of the system or data breaches, which lowers the overall risk profile. While log tampering can lead to misleading information, it does not directly compromise the application\u2019s functionality or security boundaries. Additionally, the attack requires specific conditions to succeed, relying on the lack of validation for the `REQUESTED_SERVER_NAME` field, which may not be present in all configurations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45808"
},
{
"category": "external",
"summary": "RHBZ#2313685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45808",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45808"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45808",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45808"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-p222-xhp9-39rc",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-p222-xhp9-39rc"
}
],
"release_date": "2024-09-20T00:15:02.733000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Malicious log injection via access logs"
},
{
"cve": "CVE-2024-45810",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2024-09-20T00:40:31.483825+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy. Envoy will crash when the http async client is handling `sendLocalReply` under some circumstances, such as websocket upgrade and requests mirroring. The http async client will crash during the `sendLocalReply()` in http async client if the http async client is duplicating the status code or if the destruction of the router is called at the destructor of the async stream while the stream is deferred or deleted. This issue occurs when the stream decoder is destroyed but it\u0027s reference is called in `router.onDestroy()`, causing a segment fault. This will impact ext_authz if the `upgrade` and `connection` header are allowed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Envoy crashes for `LocalReply` in HTTP async client",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in Envoy related to the HTTP async client crashing during `sendLocalReply()` is classified as moderate severity rather than important due to the crash is contingent on particular scenarios, such as websocket upgrades and request mirroring, which may not be common in all deployments. Additionally, while the segmentation fault can disrupt service, it does not compromise data integrity or expose sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45810"
},
{
"category": "external",
"summary": "RHBZ#2313687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45810",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45810"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-qm74-x36m-555q",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-qm74-x36m-555q"
}
],
"release_date": "2024-09-20T00:15:03.153000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Envoy crashes for `LocalReply` in HTTP async client"
}
]
}
RHSA-2024:10906
Vulnerability from csaf_redhat
Published
2024-12-10 01:37
Modified
2025-10-31 12:42
Summary
Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.5 security and bug fix update
Notes
Topic
The Migration Toolkit for Containers (MTC) 1.8.5 is now available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.
Security Fix(es) from Bugzilla:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)
* net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)
* go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)
* go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)
* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* express: Improper Input Handling in Express Redirects (CVE-2024-43796)
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The Migration Toolkit for Containers (MTC) 1.8.5 is now available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.\n\nSecurity Fix(es) from Bugzilla:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\n* net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)\n\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)\n\n* go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)\n\n* go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)\n\n* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n\n* express: Improper Input Handling in Express Redirects (CVE-2024-43796)\n\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10906",
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "MIG-1458",
"url": "https://issues.redhat.com/browse/MIG-1458"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10906.json"
}
],
"title": "Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.5 security and bug fix update",
"tracking": {
"current_release_date": "2025-10-31T12:42:44+00:00",
"generator": {
"date": "2025-10-31T12:42:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:10906",
"initial_release_date": "2024-12-10T01:37:19+00:00",
"revision_history": [
{
"date": "2024-12-10T01:37:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-10T01:37:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:42:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-RHMTC-1.8",
"product": {
"name": "8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhmt:1.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Migration Toolkit"
},
{
"branches": [
{
"category": "product_version",
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product_id": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-controller-rhel8\u0026tag=v1.8.5-11"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product_id": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-hook-runner-rhel8\u0026tag=v1.8.5-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product_id": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-log-reader-rhel8\u0026tag=v1.8.5-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product_id": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-must-gather-rhel8\u0026tag=v1.8.5-9"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product_id": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-openvpn-rhel8\u0026tag=v1.8.5-6"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product_id": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rhel8-operator\u0026tag=v1.8.5-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product_id": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-operator-bundle\u0026tag=v1.8.5-16"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product_id": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-registry-rhel8\u0026tag=v1.8.5-6"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product_id": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rsync-transfer-rhel8\u0026tag=v1.8.5-7"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product_id": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-ui-rhel8\u0026tag=v1.8.5-7"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8\u0026tag=v1.8.5-6"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64"
},
"product_reference": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64"
},
"product_reference": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64"
},
"product_reference": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64"
},
"product_reference": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64"
},
"product_reference": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64"
},
"product_reference": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64"
},
"product_reference": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64"
},
"product_reference": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64"
},
"product_reference": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
},
"product_reference": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-115: Misinterpretation of Input vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nControls such as input validation and error handling mitigate input misinterpretation risks by enforcing strict validation rules and secure error management. Error handling ensures inputs are validated against predefined formats, preventing malformed data from being misinterpreted. Techniques like strong typing, allow listing, and proper encoding reduce the likelihood of injection attacks and unintended code execution. Input validation also ensures that errors do not expose sensitive system details or cause unpredictable behavior. Secure error handling prevents information leakage through detailed error messages while preserving system stability under malformed input conditions. Together, these controls reduce the attack surface by maintaining consistent input processing and preventing exploitable system states, strengthening the overall security posture.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-24791",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-07-02T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/http: Denial of service due to improper 100-continue handling in net/http",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "An attacker would need to control a malicious server and induce a client to connect to it, requiring some amount of preparation outside of the attacker\u0027s control. This reduces the severity score of this flaw to Moderate.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24791"
},
{
"category": "external",
"summary": "RHBZ#2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24791"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791"
},
{
"category": "external",
"summary": "https://go.dev/cl/591255",
"url": "https://go.dev/cl/591255"
},
{
"category": "external",
"summary": "https://go.dev/issue/67555",
"url": "https://go.dev/issue/67555"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ",
"url": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ"
}
],
"release_date": "2024-07-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "net/http: Denial of service due to improper 100-continue handling in net/http"
},
{
"cve": "CVE-2024-34155",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:06.929766+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310527"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/parser package of the Golang standard library. Calling any Parse functions on Go source code containing deeply nested literals can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34155"
},
{
"category": "external",
"summary": "RHBZ#2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155"
},
{
"category": "external",
"summary": "https://go.dev/cl/611238",
"url": "https://go.dev/cl/611238"
},
{
"category": "external",
"summary": "https://go.dev/issue/69138",
"url": "https://go.dev/issue/69138"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3105",
"url": "https://pkg.go.dev/vuln/GO-2024-3105"
}
],
"release_date": "2024-09-06T21:15:11.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-34158",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2024-09-06T21:20:12.126400+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310529"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34158"
},
{
"category": "external",
"summary": "RHBZ#2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158"
},
{
"category": "external",
"summary": "https://go.dev/cl/611240",
"url": "https://go.dev/cl/611240"
},
{
"category": "external",
"summary": "https://go.dev/issue/69141",
"url": "https://go.dev/issue/69141"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3107",
"url": "https://pkg.go.dev/vuln/GO-2024-3107"
}
],
"release_date": "2024-09-06T21:15:12.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2024:8676
Vulnerability from csaf_redhat
Published
2024-10-30 14:25
Modified
2025-10-31 18:57
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.0 Security, Enhancement, & Bug Fix Update
Notes
Topic
Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.17.0 on Red Hat Enterprise Linux 9.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.
These updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:
https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/4.17_release_notes/index
All Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.17.0 on Red Hat Enterprise Linux 9.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.\n\nThese updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/4.17_release_notes/index\n\nAll Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8676",
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2059669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2059669"
},
{
"category": "external",
"summary": "2190161",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2190161"
},
{
"category": "external",
"summary": "2219310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219310"
},
{
"category": "external",
"summary": "2241329",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241329"
},
{
"category": "external",
"summary": "2245068",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245068"
},
{
"category": "external",
"summary": "2250364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250364"
},
{
"category": "external",
"summary": "2253013",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253013"
},
{
"category": "external",
"summary": "2257271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257271"
},
{
"category": "external",
"summary": "2259668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259668"
},
{
"category": "external",
"summary": "2262777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262777"
},
{
"category": "external",
"summary": "2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "2271773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271773"
},
{
"category": "external",
"summary": "2272597",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272597"
},
{
"category": "external",
"summary": "2275225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275225"
},
{
"category": "external",
"summary": "2275965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275965"
},
{
"category": "external",
"summary": "2276393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276393"
},
{
"category": "external",
"summary": "2276672",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276672"
},
{
"category": "external",
"summary": "2279751",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279751"
},
{
"category": "external",
"summary": "2279876",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279876"
},
{
"category": "external",
"summary": "2280308",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280308"
},
{
"category": "external",
"summary": "2280608",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280608"
},
{
"category": "external",
"summary": "2280637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280637"
},
{
"category": "external",
"summary": "2283994",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283994"
},
{
"category": "external",
"summary": "2292435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292435"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2294234",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294234"
},
{
"category": "external",
"summary": "2294723",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294723"
},
{
"category": "external",
"summary": "2297265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297265"
},
{
"category": "external",
"summary": "2297295",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297295"
},
{
"category": "external",
"summary": "2297447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297447"
},
{
"category": "external",
"summary": "2297454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297454"
},
{
"category": "external",
"summary": "2299630",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299630"
},
{
"category": "external",
"summary": "2299639",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299639"
},
{
"category": "external",
"summary": "2300021",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300021"
},
{
"category": "external",
"summary": "2300312",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300312"
},
{
"category": "external",
"summary": "2300331",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300331"
},
{
"category": "external",
"summary": "2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "2301889",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301889"
},
{
"category": "external",
"summary": "2302201",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302201"
},
{
"category": "external",
"summary": "2302257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302257"
},
{
"category": "external",
"summary": "2302448",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302448"
},
{
"category": "external",
"summary": "2302507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302507"
},
{
"category": "external",
"summary": "2302575",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302575"
},
{
"category": "external",
"summary": "2302774",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302774"
},
{
"category": "external",
"summary": "2302841",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302841"
},
{
"category": "external",
"summary": "2302842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302842"
},
{
"category": "external",
"summary": "2303028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303028"
},
{
"category": "external",
"summary": "2303342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303342"
},
{
"category": "external",
"summary": "2303403",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303403"
},
{
"category": "external",
"summary": "2303619",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303619"
},
{
"category": "external",
"summary": "2303820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303820"
},
{
"category": "external",
"summary": "2303821",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303821"
},
{
"category": "external",
"summary": "2303822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303822"
},
{
"category": "external",
"summary": "2303823",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303823"
},
{
"category": "external",
"summary": "2303824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303824"
},
{
"category": "external",
"summary": "2303825",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303825"
},
{
"category": "external",
"summary": "2303829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303829"
},
{
"category": "external",
"summary": "2304073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304073"
},
{
"category": "external",
"summary": "2304231",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304231"
},
{
"category": "external",
"summary": "2304232",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304232"
},
{
"category": "external",
"summary": "2304235",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304235"
},
{
"category": "external",
"summary": "2304238",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304238"
},
{
"category": "external",
"summary": "2304799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304799"
},
{
"category": "external",
"summary": "2304810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304810"
},
{
"category": "external",
"summary": "2304815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304815"
},
{
"category": "external",
"summary": "2304993",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304993"
},
{
"category": "external",
"summary": "2305274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305274"
},
{
"category": "external",
"summary": "2305295",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305295"
},
{
"category": "external",
"summary": "2305660",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305660"
},
{
"category": "external",
"summary": "2305880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305880"
},
{
"category": "external",
"summary": "2306026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306026"
},
{
"category": "external",
"summary": "2306387",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306387"
},
{
"category": "external",
"summary": "2306577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306577"
},
{
"category": "external",
"summary": "2307823",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307823"
},
{
"category": "external",
"summary": "2307835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307835"
},
{
"category": "external",
"summary": "2307909",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307909"
},
{
"category": "external",
"summary": "2308091",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308091"
},
{
"category": "external",
"summary": "2308101",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308101"
},
{
"category": "external",
"summary": "2308144",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308144"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2308304",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308304"
},
{
"category": "external",
"summary": "2308442",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308442"
},
{
"category": "external",
"summary": "2308446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308446"
},
{
"category": "external",
"summary": "2309191",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309191"
},
{
"category": "external",
"summary": "2309195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309195"
},
{
"category": "external",
"summary": "2309485",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309485"
},
{
"category": "external",
"summary": "2309486",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309486"
},
{
"category": "external",
"summary": "2309487",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309487"
},
{
"category": "external",
"summary": "2309488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309488"
},
{
"category": "external",
"summary": "2309489",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309489"
},
{
"category": "external",
"summary": "2309700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309700"
},
{
"category": "external",
"summary": "2310369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310369"
},
{
"category": "external",
"summary": "2310385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310385"
},
{
"category": "external",
"summary": "2310841",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310841"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311042",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311042"
},
{
"category": "external",
"summary": "2311043",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311043"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2311468",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311468"
},
{
"category": "external",
"summary": "2311551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311551"
},
{
"category": "external",
"summary": "2311790",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311790"
},
{
"category": "external",
"summary": "2311867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311867"
},
{
"category": "external",
"summary": "2311885",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311885"
},
{
"category": "external",
"summary": "2311893",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311893"
},
{
"category": "external",
"summary": "2312137",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312137"
},
{
"category": "external",
"summary": "2312442",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312442"
},
{
"category": "external",
"summary": "2313178",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313178"
},
{
"category": "external",
"summary": "2313203",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313203"
},
{
"category": "external",
"summary": "2313515",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313515"
},
{
"category": "external",
"summary": "2313717",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313717"
},
{
"category": "external",
"summary": "2313736",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313736"
},
{
"category": "external",
"summary": "2314200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314200"
},
{
"category": "external",
"summary": "2314211",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314211"
},
{
"category": "external",
"summary": "2314404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314404"
},
{
"category": "external",
"summary": "2314454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314454"
},
{
"category": "external",
"summary": "2314636",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314636"
},
{
"category": "external",
"summary": "2315624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315624"
},
{
"category": "external",
"summary": "2315651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315651"
},
{
"category": "external",
"summary": "2315666",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315666"
},
{
"category": "external",
"summary": "2315709",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315709"
},
{
"category": "external",
"summary": "2315733",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315733"
},
{
"category": "external",
"summary": "2315846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315846"
},
{
"category": "external",
"summary": "2318490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318490"
},
{
"category": "external",
"summary": "2319102",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319102"
},
{
"category": "external",
"summary": "2319238",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319238"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8676.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.0 Security, Enhancement, \u0026 Bug Fix Update",
"tracking": {
"current_release_date": "2025-10-31T18:57:04+00:00",
"generator": {
"date": "2025-10-31T18:57:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:8676",
"initial_release_date": "2024-10-30T14:25:22+00:00",
"revision_history": [
{
"date": "2024-10-30T14:25:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-30T14:25:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T18:57:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.17 for RHEL 9",
"product": {
"name": "RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product_id": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product_id": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product_id": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Kokorin Vsevolod"
]
}
],
"cve": "CVE-2023-26136",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2023-07-03T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2219310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the tough-cookie package which allows Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tough-cookie: prototype pollution in cookie memstore",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-26136"
},
{
"category": "external",
"summary": "RHBZ#2219310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-26136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-26136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26136"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/commit/12d474791bb856004e858fdb1c47b7608d09cf6e",
"url": "https://github.com/salesforce/tough-cookie/commit/12d474791bb856004e858fdb1c47b7608d09cf6e"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/issues/282",
"url": "https://github.com/salesforce/tough-cookie/issues/282"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/releases/tag/v4.1.3",
"url": "https://github.com/salesforce/tough-cookie/releases/tag/v4.1.3"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2023/07/msg00010.html",
"url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00010.html"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873",
"url": "https://security.snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873"
}
],
"release_date": "2023-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tough-cookie: prototype pollution in cookie memstore"
},
{
"cve": "CVE-2023-26364",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2023-11-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2250364"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Adobe CSS Tools. An improper input validation could result in a minor denial of service while parsing a malicious CSS with the parse component. User interaction and privileges are not required to jeopardize an environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "css-tools: Improper Input Validation causes Denial of Service via Regular Expression",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-26364"
},
{
"category": "external",
"summary": "RHBZ#2250364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250364"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-26364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26364"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-26364",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26364"
},
{
"category": "external",
"summary": "https://github.com/adobe/css-tools/security/advisories/GHSA-hpx4-r86g-5jrg",
"url": "https://github.com/adobe/css-tools/security/advisories/GHSA-hpx4-r86g-5jrg"
}
],
"release_date": "2023-11-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "No mitigation is yet available for this vulnerability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "css-tools: Improper Input Validation causes Denial of Service via Regular Expression"
},
{
"cve": "CVE-2024-24786",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268046"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang\u0027s protobuf module, where the unmarshal function can enter an infinite loop when processing certain invalid inputs. This issue occurs during unmarshaling into a message that includes a google.protobuf.Any or when the UnmarshalOptions.DiscardUnknown option is enabled. This flaw allows an attacker to craft malicious input tailored to trigger the identified flaw in the unmarshal function. By providing carefully constructed invalid inputs, they could potentially cause the function to enter an infinite loop, resulting in a denial of service condition or other unintended behaviors in the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-835: Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to ensure the most restrictive setting needed for operational requirements. Event logs are collected and processed for centralization, correlation, analysis, monitoring, reporting, alerting, and retention. This process ensures that audit logs are generated for specific events involving sensitive information, enabling capabilities like excessive CPU usage, long execution times, or processes consuming abnormal amounts of memory. Static code analysis and peer code review techniques are used to execute robust input validation and error-handling mechanisms to ensure all user inputs are thoroughly validated, preventing infinite loops caused by malformed or unexpected input, such as unbounded user input or unexpected null values that cause loops to never terminate. In the event of successful exploitation, process isolation limits the effect of an infinite loop to a single process rather than allowing it to consume all system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "RHBZ#2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786"
},
{
"category": "external",
"summary": "https://go.dev/cl/569356",
"url": "https://go.dev/cl/569356"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/",
"url": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2611",
"url": "https://pkg.go.dev/vuln/GO-2024-2611"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-28176",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268820"
}
],
"notes": [
{
"category": "description",
"text": "Jose was found to have an uncontrolled resource consumption vulnerability. Under certain conditions, the user\u0027s environment can consume an unreasonable amount of CPU time or memory during JWE decryption operations, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose: resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "RHBZ#2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q",
"url": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose: resource exhaustion"
},
{
"cve": "CVE-2024-41818",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-07-29T16:24:42+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2300499"
}
],
"notes": [
{
"category": "description",
"text": "A regular expression denial of service (ReDoS) flaw was found in fast-xml-parser in the currency.js script. By sending a specially crafted regex input, a remote attacker could cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: ReDOS at currency parsing in currency.js",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat has decided to rate this vulnerability as Important due to the potential loss of Availability and the low complexity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41818"
},
{
"category": "external",
"summary": "RHBZ#2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41818",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41818"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v"
}
],
"release_date": "2024-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: ReDOS at currency parsing in currency.js"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
RHSA-2024:10962
Vulnerability from csaf_redhat
Published
2024-12-11 16:47
Modified
2025-10-23 23:53
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10962",
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43796",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43799",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43800",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45811",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45812",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47068",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10962.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-10-23T23:53:36+00:00",
"generator": {
"date": "2025-10-23T23:53:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:10962",
"initial_release_date": "2024-12-11T16:47:10+00:00",
"revision_history": [
{
"date": "2024-12-11T16:47:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:51:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-23T23:53:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aeebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3A44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3Abf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ada3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Aa7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ac81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Abb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Ae7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Ab541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ab0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ab9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Afe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
rhsa-2024:7725
Vulnerability from csaf_redhat
Published
2024-10-07 09:24
Modified
2025-10-31 12:41
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.5
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.5.5
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule
(CVE-2024-43788)
* envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode (CVE-2024-23326)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* envoy: Brotli decompressor infinite loop (CVE-2024-32976)
* envoy: abnormal termination when using auto_sni with authority header longer
than 255 characters (CVE-2024-32475)
* envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood (CVE-2024-30255)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.5.5\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a\ndetailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule\n(CVE-2024-43788)\n* envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode (CVE-2024-23326)\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* envoy: Brotli decompressor infinite loop (CVE-2024-32976)\n* envoy: abnormal termination when using auto_sni with authority header longer\nthan 255 characters (CVE-2024-32475)\n* envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood (CVE-2024-30255)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7725",
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2259228",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259228"
},
{
"category": "external",
"summary": "2272986",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272986"
},
{
"category": "external",
"summary": "2276149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276149"
},
{
"category": "external",
"summary": "2283145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283145"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7725.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.5",
"tracking": {
"current_release_date": "2025-10-31T12:41:54+00:00",
"generator": {
"date": "2025-10-31T12:41:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:7725",
"initial_release_date": "2024-10-07T09:24:53+00:00",
"revision_history": [
{
"date": "2024-10-07T09:24:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-07T09:24:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:41:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.5 for RHEL 8",
"product": {
"name": "RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-23326",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2024-01-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2259228"
}
],
"notes": [
{
"category": "description",
"text": "A possible request smuggling vulnerability exists through Envoy. This issue occurs if a server can be tricked into adding an upgrade header into a response.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-23326"
},
{
"category": "external",
"summary": "RHBZ#2259228",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259228"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-23326",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23326"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-23326",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23326"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-vcf8-7238-v74c",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-vcf8-7238-v74c"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode"
},
{
"acknowledgments": [
{
"names": [
"Bartek Nowotarski"
],
"organization": "nowotarski.info"
}
],
"cve": "CVE-2024-30255",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2024-04-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2272986"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in how Envoy Proxy implements the HTTP/2 codec. There are insufficient limitations placed on the amount of CONTINUATION frames that can be sent within a single stream. This issue could allow an unauthenticated remote attacker to send packets to vulnerable servers, which could use up compute resources to cause a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates the security impact of this vulnerability as Moderate, in alignment with upstream Envoy. The worst case scenario is excessive CPU utilization causing a denial of service. Once an attack has ended, the system should return to normal operations on its own.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-30255"
},
{
"category": "external",
"summary": "RHBZ#2272986",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272986"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-30255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30255"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-30255",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-30255"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-j654-3ccm-vfmm",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-j654-3ccm-vfmm"
},
{
"category": "external",
"summary": "https://nowotarski.info/http2-continuation-flood/",
"url": "https://nowotarski.info/http2-continuation-flood/"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/421644",
"url": "https://www.kb.cert.org/vuls/id/421644"
}
],
"release_date": "2024-04-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood"
},
{
"cve": "CVE-2024-32475",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2024-04-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276149"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy, a cloud-native, open source edge and service proxy. When an upstream TLS cluster is used with \"auto_sni\" enabled, a request containing a \"host/:authority\" header longer than 255 characters triggers an abnormal termination of the Envoy process, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: abnormal termination when using auto_sni with authority header longer than 255 characters",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32475"
},
{
"category": "external",
"summary": "RHBZ#2276149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32475",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32475"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/commit/b47fc6648d7c2dfe0093a601d44cb704b7bad382",
"url": "https://github.com/envoyproxy/envoy/commit/b47fc6648d7c2dfe0093a601d44cb704b7bad382"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-3mh5-6q8v-25wj",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-3mh5-6q8v-25wj"
}
],
"release_date": "2024-04-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "envoy: abnormal termination when using auto_sni with authority header longer than 255 characters"
},
{
"cve": "CVE-2024-32976",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-05-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2283145"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy\u0027s Brotli decompressor. This flaw allows a remote, unauthenticated attacker to trigger an infinite loop, causing a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Brotli decompressor infinite loop",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32976"
},
{
"category": "external",
"summary": "RHBZ#2283145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32976"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32976",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32976"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-7wp5-c2vq-4f8m",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-7wp5-c2vq-4f8m"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "envoy: Brotli decompressor infinite loop"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"acknowledgments": [
{
"names": [
"Mike Whale"
]
},
{
"names": [
"James Force"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2024-45806",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2024-09-20T00:40:20.976812+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313683"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Envoy that allows external clients to manipulate Envoy headers, potentially leading to unauthorized access or other malicious actions within the mesh. This issue arises due to Envoy\u0027s default configuration of internal trust boundaries, which considers all RFC1918 private address ranges as internal. The default behavior for handling internal addresses in Envoy has been changed. Previously, RFC1918 IP addresses were automatically considered internal, even if the internal_address_config was empty. The default configuration of Envoy will continue to trust internal addresses while in this release and it will not trust them by default in next release. If you have tooling such as probes on your private network which need to be treated as trusted such as changing arbitrary x-envoy headers, please explicitly include those addresses or CIDR ranges into `internal_address_config`. Successful exploitation could allow attackers to bypass security controls, access sensitive data, or disrupt services within the mesh, like Istio.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Potential to manipulate `x-envoy` headers from external sources",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat\u0027s CVSS score and impact are specific to our product and may not match those of upstream. This is due to how envoy is configured and used within our OpenShift Service Mesh product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45806"
},
{
"category": "external",
"summary": "RHBZ#2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45806"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf"
}
],
"release_date": "2024-09-20T00:15:02.293000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by configuring envoy to treat all IPs as external. This is done by setting the internal_address_config range for envoy to `0.0.0.0/32`.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Potential to manipulate `x-envoy` headers from external sources"
}
]
}
rhsa-2024_10906
Vulnerability from csaf_redhat
Published
2024-12-10 01:37
Modified
2025-01-06 21:37
Summary
Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.5 security and bug fix update
Notes
Topic
The Migration Toolkit for Containers (MTC) 1.8.5 is now available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.
Security Fix(es) from Bugzilla:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)
* net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)
* go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)
* go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)
* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* express: Improper Input Handling in Express Redirects (CVE-2024-43796)
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The Migration Toolkit for Containers (MTC) 1.8.5 is now available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.\n\nSecurity Fix(es) from Bugzilla:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\n* net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)\n\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)\n\n* go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)\n\n* go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)\n\n* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n\n* express: Improper Input Handling in Express Redirects (CVE-2024-43796)\n\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10906",
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "MIG-1458",
"url": "https://issues.redhat.com/browse/MIG-1458"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10906.json"
}
],
"title": "Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.5 security and bug fix update",
"tracking": {
"current_release_date": "2025-01-06T21:37:50+00:00",
"generator": {
"date": "2025-01-06T21:37:50+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:10906",
"initial_release_date": "2024-12-10T01:37:19+00:00",
"revision_history": [
{
"date": "2024-12-10T01:37:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-10T01:37:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T21:37:50+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-RHMTC-1.8",
"product": {
"name": "8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhmt:1.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Migration Toolkit"
},
{
"branches": [
{
"category": "product_version",
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product_id": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-controller-rhel8\u0026tag=v1.8.5-11"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product_id": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-hook-runner-rhel8\u0026tag=v1.8.5-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product_id": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-log-reader-rhel8\u0026tag=v1.8.5-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product_id": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-must-gather-rhel8\u0026tag=v1.8.5-9"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product_id": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-openvpn-rhel8\u0026tag=v1.8.5-6"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product_id": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rhel8-operator\u0026tag=v1.8.5-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product_id": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-operator-bundle\u0026tag=v1.8.5-16"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product_id": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-registry-rhel8\u0026tag=v1.8.5-6"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product_id": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rsync-transfer-rhel8\u0026tag=v1.8.5-7"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product_id": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-ui-rhel8\u0026tag=v1.8.5-7"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8\u0026tag=v1.8.5-6"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64"
},
"product_reference": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64"
},
"product_reference": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64"
},
"product_reference": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64"
},
"product_reference": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64"
},
"product_reference": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64"
},
"product_reference": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64"
},
"product_reference": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64"
},
"product_reference": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64"
},
"product_reference": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
},
"product_reference": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-24791",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-07-02T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/http: Denial of service due to improper 100-continue handling in net/http",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "An attacker would need to control a malicious server and induce a client to connect to it, requiring some amount of preparation outside of the attacker\u0027s control. This reduces the severity score of this flaw to Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24791"
},
{
"category": "external",
"summary": "RHBZ#2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24791"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791"
},
{
"category": "external",
"summary": "https://go.dev/cl/591255",
"url": "https://go.dev/cl/591255"
},
{
"category": "external",
"summary": "https://go.dev/issue/67555",
"url": "https://go.dev/issue/67555"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ",
"url": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ"
}
],
"release_date": "2024-07-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "net/http: Denial of service due to improper 100-continue handling in net/http"
},
{
"cve": "CVE-2024-34155",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:06.929766+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310527"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/parser package of the Golang standard library. Calling any Parse functions on Go source code containing deeply nested literals can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34155"
},
{
"category": "external",
"summary": "RHBZ#2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155"
},
{
"category": "external",
"summary": "https://go.dev/cl/611238",
"url": "https://go.dev/cl/611238"
},
{
"category": "external",
"summary": "https://go.dev/issue/69138",
"url": "https://go.dev/issue/69138"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3105",
"url": "https://pkg.go.dev/vuln/GO-2024-3105"
}
],
"release_date": "2024-09-06T21:15:11.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-34158",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2024-09-06T21:20:12.126400+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310529"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34158"
},
{
"category": "external",
"summary": "RHBZ#2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158"
},
{
"category": "external",
"summary": "https://go.dev/cl/611240",
"url": "https://go.dev/cl/611240"
},
{
"category": "external",
"summary": "https://go.dev/issue/69141",
"url": "https://go.dev/issue/69141"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3107",
"url": "https://pkg.go.dev/vuln/GO-2024-3107"
}
],
"release_date": "2024-09-06T21:15:12.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2024_10962
Vulnerability from csaf_redhat
Published
2024-12-11 16:47
Modified
2025-01-06 18:54
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10962",
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10962.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-01-06T18:54:46+00:00",
"generator": {
"date": "2025-01-06T18:54:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:10962",
"initial_release_date": "2024-12-11T16:47:10+00:00",
"revision_history": [
{
"date": "2024-12-11T16:47:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-11T16:47:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T18:54:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aeebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3A44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3Abf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ada3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Aa7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ac81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Abb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Ae7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Ab541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ab0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ab9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Afe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
rhsa-2025:0875
Vulnerability from csaf_redhat
Published
2025-02-05 10:48
Modified
2025-10-31 12:52
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.17.15 security and extras update
Notes
Topic
Red Hat OpenShift Container Platform release 4.17.15 is now available with updates to packages and images that fix several bugs.
This release includes a security update for Red Hat OpenShift Container Platform 4.17.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.17.15. See the following advisory for the container images for this release:
https://access.redhat.com/errata/RHSA-2025:0876
Security Fix(es):
* golang.org/x/net/html: Non-linear parsing of case-insensitive content in
golang.org/x/net/html (CVE-2024-45338)
* body-parser: Denial of Service Vulnerability in body-parser
(CVE-2024-45590)
* dompurify: DOMPurify vulnerable to tampering by prototype pollution
(CVE-2024-48910)
* jinja2: Jinja has a sandbox breakout through malicious filenames
(CVE-2024-56201)
* express: Improper Input Handling in Express Redirects (CVE-2024-43796)
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
* path-to-regexp: Backtracking regular expressions cause ReDoS
(CVE-2024-45296)
* path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x
(CVE-2024-52798)
* nanoid: nanoid mishandles non-integer values (CVE-2024-55565)
* jinja2: Jinja has a sandbox breakout through indirect reference to format
method (CVE-2024-56326)
* cross-spawn: regular expression denial of service (CVE-2024-21538)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.17/updating/updating_a_cluster/updating-cluster-cli.html
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.17.15 is now available with updates to packages and images that fix several bugs.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.17.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.17.15. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2025:0876\n\nSecurity Fix(es):\n\n* golang.org/x/net/html: Non-linear parsing of case-insensitive content in\ngolang.org/x/net/html (CVE-2024-45338)\n* body-parser: Denial of Service Vulnerability in body-parser\n(CVE-2024-45590)\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution\n(CVE-2024-48910)\n* jinja2: Jinja has a sandbox breakout through malicious filenames\n(CVE-2024-56201)\n* express: Improper Input Handling in Express Redirects (CVE-2024-43796)\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n* path-to-regexp: Backtracking regular expressions cause ReDoS\n(CVE-2024-45296)\n* path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x\n(CVE-2024-52798)\n* nanoid: nanoid mishandles non-integer values (CVE-2024-55565)\n* jinja2: Jinja has a sandbox breakout through indirect reference to format\nmethod (CVE-2024-56326)\n* cross-spawn: regular expression denial of service (CVE-2024-21538)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.17/updating/updating_a_cluster/updating-cluster-cli.html",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:0875",
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "2330689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2330689"
},
{
"category": "external",
"summary": "2331063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331063"
},
{
"category": "external",
"summary": "2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "2333854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333854"
},
{
"category": "external",
"summary": "2333856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333856"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_0875.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.17.15 security and extras update",
"tracking": {
"current_release_date": "2025-10-31T12:52:46+00:00",
"generator": {
"date": "2025-10-31T12:52:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:0875",
"initial_release_date": "2025-02-05T10:48:52+00:00",
"revision_history": [
{
"date": "2025-02-05T10:48:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-05T10:48:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:52:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.17",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"product": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"product_id": "openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.g289d704.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"product": {
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"product_id": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator\u0026tag=v4.17.0-202501271440.p0.g1cbd312.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"product": {
"name": "openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"product_id": "openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"product": {
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"product_id": "openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-daemon-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"product": {
"name": "openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"product_id": "openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"product": {
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"product_id": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g925fe92.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"product": {
"name": "openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"product_id": "openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9\u0026tag=v4.17.0-202501230004.p0.g93e8590.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"product": {
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"product_id": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g93e8590.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"product": {
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"product_id": "openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/kube-compare-artifacts-rhel9\u0026tag=v4.17.0-202501230004.p0.gcbaea1d.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"product": {
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"product_id": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"product": {
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"product_id": "openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"product": {
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"product_id": "openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/nmstate-console-plugin-rhel9\u0026tag=v4.17.0-202501301204.p0.gcffdc60.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"product": {
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"product_id": "openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9\u0026tag=v4.17.0-202501271440.p0.g4313828.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"product": {
"name": "openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"product_id": "openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-rhel9-operator\u0026tag=v4.17.0-202501300634.p0.g9cb5839.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"product": {
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"product_id": "openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity-rhel9\u0026tag=v4.17.0-202501230004.p0.g5e7e0e4.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"product": {
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"product_id": "openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-dns-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"product": {
"name": "openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"product_id": "openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-router-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"product": {
"name": "openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"product_id": "openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-helm-rhel9-operator\u0026tag=v4.17.0-202501300505.p0.gb064595.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"product": {
"name": "openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"product_id": "openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-operator-sdk-rhel9\u0026tag=v4.17.0-202501300505.p0.gb064595.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"product": {
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"product_id": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9\u0026tag=v4.17.0-202501271912.p0.g003eefd.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"product_id": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9\u0026tag=v4.17.0-202501230004.p0.g9696583.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"product_id": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gcc86210.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"product_id": "openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9\u0026tag=v4.17.0-202501230004.p0.g5c1609c.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"product_id": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator\u0026tag=v4.17.0-202501232205.p0.g7b4e1cb.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"product": {
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"product_id": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-csi-driver-shared-resource-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g027a8c4.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"product": {
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"product_id": "openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-http-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"product": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"product_id": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.g7f66ced.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"product": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"product_id": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g4bee057.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"product": {
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"product_id": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator\u0026tag=v4.17.0-202501301304.p0.g003eefd.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"product": {
"name": "openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"product_id": "openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9\u0026tag=v4.17.0-202501230004.p0.g1a9bad1.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"product": {
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"product_id": "openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"product": {
"name": "openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"product_id": "openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9-operator\u0026tag=v4.17.0-202501241706.p0.g9dffc63.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"product": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"product_id": "openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g45e6bc0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"product_id": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.ge7acc6a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"product_id": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g06f3ae6.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"product": {
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"product_id": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g06f3ae6.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"product": {
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"product_id": "openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.g0161a3a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"product": {
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"product_id": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gcc86210.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"product": {
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"product_id": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9\u0026tag=v4.17.0-202501230004.p0.geba46bf.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"product": {
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"product_id": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/sriov-network-metrics-exporter-rhel9\u0026tag=v4.17.0-202501230004.p0.geba46bf.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"product": {
"name": "openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"product_id": "openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/rdma-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.ge03c41b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"product": {
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"product_id": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.ge03c41b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"product_id": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9\u0026tag=v4.17.0-202501230004.p0.g6c24c11.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"product_id": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gec3a8a0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"product": {
"name": "openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"product_id": "openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9\u0026tag=v4.17.0-202501230004.p0.g7b2473d.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"product": {
"name": "openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"product_id": "openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ptp-must-gather-rhel9\u0026tag=v4.17.0-202501230004.p0.g45e6bc0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"product": {
"name": "openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"product_id": "openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/sriov-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g123dd24.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"product": {
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"product_id": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9\u0026tag=v4.17.0-202501230004.p0.ge1d8f95.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"product": {
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"product_id": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"product": {
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"product_id": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e5877f.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"product": {
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"product_id": "openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"product": {
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"product_id": "openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"product": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"product_id": "openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.g289d704.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"product": {
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"product_id": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator\u0026tag=v4.17.0-202501271440.p0.g1cbd312.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"product": {
"name": "openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"product_id": "openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"product": {
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"product_id": "openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-daemon-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"product": {
"name": "openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"product_id": "openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"product": {
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"product_id": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g925fe92.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"product": {
"name": "openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"product_id": "openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9\u0026tag=v4.17.0-202501230004.p0.g93e8590.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"product": {
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"product_id": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g93e8590.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"product": {
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"product_id": "openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/kube-compare-artifacts-rhel9\u0026tag=v4.17.0-202501230004.p0.gcbaea1d.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"product": {
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"product_id": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"product": {
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"product_id": "openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"product": {
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"product_id": "openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/nmstate-console-plugin-rhel9\u0026tag=v4.17.0-202501301204.p0.gcffdc60.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"product": {
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"product_id": "openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9\u0026tag=v4.17.0-202501271440.p0.g4313828.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"product": {
"name": "openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"product_id": "openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-rhel9-operator\u0026tag=v4.17.0-202501300634.p0.g9cb5839.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"product": {
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"product_id": "openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity-rhel9\u0026tag=v4.17.0-202501230004.p0.g5e7e0e4.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"product": {
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"product_id": "openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-egress-dns-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"product": {
"name": "openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"product_id": "openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-egress-router-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"product": {
"name": "openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"product_id": "openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-helm-rhel9-operator\u0026tag=v4.17.0-202501300505.p0.gb064595.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"product": {
"name": "openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"product_id": "openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-operator-sdk-rhel9\u0026tag=v4.17.0-202501300505.p0.gb064595.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"product": {
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"product_id": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9\u0026tag=v4.17.0-202501271912.p0.g003eefd.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"product_id": "openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9\u0026tag=v4.17.0-202501230004.p0.g5c1609c.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"product_id": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator\u0026tag=v4.17.0-202501232205.p0.g7b4e1cb.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"product": {
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"product_id": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-csi-driver-shared-resource-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g027a8c4.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"product": {
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"product_id": "openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-egress-http-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"product": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"product_id": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.g7f66ced.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"product": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"product_id": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g4bee057.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"product": {
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"product_id": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator\u0026tag=v4.17.0-202501301304.p0.g003eefd.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"product": {
"name": "openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"product_id": "openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9\u0026tag=v4.17.0-202501230004.p0.g1a9bad1.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"product": {
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"product_id": "openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"product": {
"name": "openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"product_id": "openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9-operator\u0026tag=v4.17.0-202501241706.p0.g9dffc63.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"product": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"product_id": "openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g45e6bc0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"product_id": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.ge7acc6a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"product_id": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g06f3ae6.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"product": {
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"product_id": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g06f3ae6.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"product": {
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"product_id": "openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.g0161a3a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"product": {
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"product_id": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gcc86210.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"product": {
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"product_id": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9\u0026tag=v4.17.0-202501230004.p0.geba46bf.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"product": {
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"product_id": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/sriov-network-metrics-exporter-rhel9\u0026tag=v4.17.0-202501230004.p0.geba46bf.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"product": {
"name": "openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"product_id": "openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/rdma-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.ge03c41b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"product": {
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"product_id": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.ge03c41b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"product_id": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9\u0026tag=v4.17.0-202501230004.p0.g6c24c11.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"product_id": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gec3a8a0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"product": {
"name": "openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"product_id": "openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9\u0026tag=v4.17.0-202501230004.p0.g7b2473d.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"product": {
"name": "openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"product_id": "openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ptp-must-gather-rhel9\u0026tag=v4.17.0-202501230004.p0.g45e6bc0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"product": {
"name": "openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"product_id": "openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/sriov-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g123dd24.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"product": {
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"product_id": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9\u0026tag=v4.17.0-202501230004.p0.ge1d8f95.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"product": {
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"product_id": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"product": {
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"product_id": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e5877f.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"product": {
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"product_id": "openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"product": {
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"product_id": "openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"product": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"product_id": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-event-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.g289d704.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"product": {
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"product_id": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator\u0026tag=v4.17.0-202501271440.p0.g1cbd312.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"product": {
"name": "openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"product_id": "openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"product": {
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"product_id": "openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-daemon-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"product": {
"name": "openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"product_id": "openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"product": {
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"product_id": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-infiniband-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g925fe92.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"product": {
"name": "openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"product_id": "openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9\u0026tag=v4.17.0-202501230004.p0.g93e8590.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"product": {
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"product_id": "openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g93e8590.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"product": {
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"product_id": "openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/kube-compare-artifacts-rhel9\u0026tag=v4.17.0-202501230004.p0.gcbaea1d.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"product": {
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"product_id": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"product": {
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"product_id": "openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"product": {
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"product_id": "openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"product_identification_helper": {
"purl": "pkg:oci/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/nmstate-console-plugin-rhel9\u0026tag=v4.17.0-202501301204.p0.gcffdc60.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"product": {
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"product_id": "openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9\u0026tag=v4.17.0-202501271440.p0.g4313828.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"product": {
"name": "openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"product_id": "openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-rhel9-operator\u0026tag=v4.17.0-202501300634.p0.g9cb5839.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"product": {
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"product_id": "openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity-rhel9\u0026tag=v4.17.0-202501230004.p0.g5e7e0e4.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"product": {
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"product_id": "openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-dns-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"product": {
"name": "openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"product_id": "openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-router-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"product": {
"name": "openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"product_id": "openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-helm-rhel9-operator\u0026tag=v4.17.0-202501300505.p0.gb064595.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"product": {
"name": "openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"product_id": "openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-operator-sdk-rhel9\u0026tag=v4.17.0-202501300505.p0.gb064595.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"product": {
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"product_id": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9\u0026tag=v4.17.0-202501271912.p0.g003eefd.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"product_id": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-container-rhel9\u0026tag=v4.17.0-202501230004.p0.g9696583.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"product": {
"name": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"product_id": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-efs-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gcc86210.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"product_id": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9\u0026tag=v4.17.0-202501230004.p0.g5c1609c.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"product_id": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator\u0026tag=v4.17.0-202501232205.p0.g7b4e1cb.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"product": {
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"product_id": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-csi-driver-shared-resource-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g027a8c4.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"product": {
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"product_id": "openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-http-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"product": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"product_id": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.g7f66ced.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"product": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"product_id": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-gcp-filestore-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g4bee057.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"product": {
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"product_id": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator\u0026tag=v4.17.0-202501301304.p0.g003eefd.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"product": {
"name": "openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"product_id": "openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9\u0026tag=v4.17.0-202501230004.p0.g1a9bad1.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"product": {
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"product_id": "openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"product": {
"name": "openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"product_id": "openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9-operator\u0026tag=v4.17.0-202501241706.p0.g9dffc63.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"product": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"product_id": "openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-ptp-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g45e6bc0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"product_id": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.ge7acc6a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"product_id": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g06f3ae6.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"product": {
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"product_id": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g06f3ae6.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"product": {
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"product_id": "openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.g0161a3a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"product": {
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"product_id": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gcc86210.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"product": {
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"product_id": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-metrics-exporter-rhel9\u0026tag=v4.17.0-202501230004.p0.geba46bf.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"product": {
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"product_id": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/sriov-network-metrics-exporter-rhel9\u0026tag=v4.17.0-202501230004.p0.geba46bf.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"product": {
"name": "openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"product_id": "openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/rdma-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.ge03c41b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"product": {
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"product_id": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-rdma-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.ge03c41b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"product_id": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9\u0026tag=v4.17.0-202501230004.p0.g6c24c11.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"product_id": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gec3a8a0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"product": {
"name": "openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"product_id": "openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9\u0026tag=v4.17.0-202501230004.p0.g7b2473d.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"product": {
"name": "openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"product_id": "openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ptp-must-gather-rhel9\u0026tag=v4.17.0-202501230004.p0.g45e6bc0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"product": {
"name": "openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"product_id": "openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/sriov-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g123dd24.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"product": {
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"product_id": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller-rhel9\u0026tag=v4.17.0-202501230004.p0.ge1d8f95.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"product": {
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"product_id": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-config-daemon-rhel9\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"product": {
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"product_id": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-device-plugin-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e5877f.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"product": {
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"product_id": "openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"product": {
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"product_id": "openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8?arch=arm64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-webhook-rhel9\u0026tag=v4.17.0-202501230004.p0.g9a9ba1b.assembly.stream.el9"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"product": {
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"product_id": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-nfd-rhel9-operator\u0026tag=v4.17.0-202501271440.p0.g1cbd312.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"product": {
"name": "openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"product_id": "openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-cni-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"product": {
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"product_id": "openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-daemon-rhel9\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"product": {
"name": "openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"product_id": "openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-dpu-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g6e63d0a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"product": {
"name": "openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"product_id": "openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9\u0026tag=v4.17.0-202501230004.p0.g93e8590.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"product": {
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"product_id": "openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ingress-node-firewall-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g93e8590.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"product": {
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"product_id": "openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/kube-compare-artifacts-rhel9\u0026tag=v4.17.0-202501230004.p0.gcbaea1d.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"product": {
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"product_id": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-diskmaker-rhel9\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"product": {
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"product_id": "openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"product": {
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"product_id": "openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"product_identification_helper": {
"purl": "pkg:oci/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/nmstate-console-plugin-rhel9\u0026tag=v4.17.0-202501301204.p0.gcffdc60.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"product": {
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"product_id": "openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-node-feature-discovery-rhel9\u0026tag=v4.17.0-202501271440.p0.g4313828.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"product": {
"name": "openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"product_id": "openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-rhel9-operator\u0026tag=v4.17.0-202501300634.p0.g9cb5839.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"product": {
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"product_id": "openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity-rhel9\u0026tag=v4.17.0-202501230004.p0.g5e7e0e4.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"product": {
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"product_id": "openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-egress-dns-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"product": {
"name": "openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"product_id": "openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-egress-router-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"product": {
"name": "openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"product_id": "openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-helm-rhel9-operator\u0026tag=v4.17.0-202501300505.p0.gb064595.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"product": {
"name": "openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"product_id": "openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-operator-sdk-rhel9\u0026tag=v4.17.0-202501300505.p0.gb064595.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"product": {
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"product_id": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-kubernetes-nmstate-handler-rhel9\u0026tag=v4.17.0-202501271912.p0.g003eefd.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"product_id": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9\u0026tag=v4.17.0-202501230004.p0.g5c1609c.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"product": {
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"product_id": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-clusterresourceoverride-rhel9-operator\u0026tag=v4.17.0-202501232205.p0.g7b4e1cb.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"product": {
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"product_id": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-csi-driver-shared-resource-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g027a8c4.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"product": {
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"product_id": "openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-egress-http-proxy-rhel9\u0026tag=v4.17.0-202501230004.p0.ge3879e9.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"product": {
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"product_id": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/kubernetes-nmstate-rhel9-operator\u0026tag=v4.17.0-202501301304.p0.g003eefd.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"product": {
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"product_id": "openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-local-storage-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g0d010ae.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"product": {
"name": "openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"product_id": "openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/metallb-rhel9-operator\u0026tag=v4.17.0-202501241706.p0.g9dffc63.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"product_id": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.ge7acc6a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"product": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"product_id": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.g06f3ae6.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"product": {
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"product_id": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-secrets-store-csi-mustgather-rhel9\u0026tag=v4.17.0-202501230004.p0.g06f3ae6.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"product": {
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"product_id": "openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9\u0026tag=v4.17.0-202501230004.p0.g0161a3a.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"product": {
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"product_id": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-smb-csi-driver-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gcc86210.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"product_id": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9\u0026tag=v4.17.0-202501230004.p0.g6c24c11.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"product": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"product_id": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/ose-vertical-pod-autoscaler-rhel9-operator\u0026tag=v4.17.0-202501230004.p0.gec3a8a0.assembly.stream.el9"
}
}
},
{
"category": "product_version",
"name": "openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"product": {
"name": "openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"product_id": "openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a?arch=s390x\u0026repository_url=registry.redhat.io/openshift4/pf-status-relay-rhel9\u0026tag=v4.17.0-202501230004.p0.g7b2473d.assembly.stream.el9"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64"
},
"product_reference": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le"
},
"product_reference": "openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x"
},
"product_reference": "openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64"
},
"product_reference": "openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64"
},
"product_reference": "openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x"
},
"product_reference": "openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le"
},
"product_reference": "openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64"
},
"product_reference": "openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64"
},
"product_reference": "openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le"
},
"product_reference": "openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x"
},
"product_reference": "openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64"
},
"product_reference": "openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64"
},
"product_reference": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x"
},
"product_reference": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le"
},
"product_reference": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64"
},
"product_reference": "openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x"
},
"product_reference": "openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64"
},
"product_reference": "openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le"
},
"product_reference": "openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64"
},
"product_reference": "openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64"
},
"product_reference": "openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64"
},
"product_reference": "openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x"
},
"product_reference": "openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
},
"product_reference": "openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le"
},
"product_reference": "openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64"
},
"product_reference": "openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x"
},
"product_reference": "openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64"
},
"product_reference": "openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64"
},
"product_reference": "openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le"
},
"product_reference": "openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64"
},
"product_reference": "openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64"
},
"product_reference": "openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x"
},
"product_reference": "openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64"
},
"product_reference": "openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64"
},
"product_reference": "openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le"
},
"product_reference": "openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le"
},
"product_reference": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64"
},
"product_reference": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x"
},
"product_reference": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64"
},
"product_reference": "openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64"
},
"product_reference": "openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x"
},
"product_reference": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64"
},
"product_reference": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64"
},
"product_reference": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le"
},
"product_reference": "openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64"
},
"product_reference": "openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x"
},
"product_reference": "openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64"
},
"product_reference": "openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le"
},
"product_reference": "openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le"
},
"product_reference": "openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64"
},
"product_reference": "openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64"
},
"product_reference": "openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x"
},
"product_reference": "openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x"
},
"product_reference": "openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le"
},
"product_reference": "openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64"
},
"product_reference": "openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64"
},
"product_reference": "openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64"
},
"product_reference": "openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x"
},
"product_reference": "openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64"
},
"product_reference": "openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le"
},
"product_reference": "openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le"
},
"product_reference": "openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64"
},
"product_reference": "openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x"
},
"product_reference": "openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64"
},
"product_reference": "openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x"
},
"product_reference": "openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le"
},
"product_reference": "openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64"
},
"product_reference": "openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64"
},
"product_reference": "openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le"
},
"product_reference": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64"
},
"product_reference": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64"
},
"product_reference": "openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64"
},
"product_reference": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le"
},
"product_reference": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64"
},
"product_reference": "openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64"
},
"product_reference": "openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64"
},
"product_reference": "openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x"
},
"product_reference": "openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le"
},
"product_reference": "openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x"
},
"product_reference": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64"
},
"product_reference": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64"
},
"product_reference": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le"
},
"product_reference": "openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le"
},
"product_reference": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x"
},
"product_reference": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64"
},
"product_reference": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64"
},
"product_reference": "openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le"
},
"product_reference": "openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64"
},
"product_reference": "openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64"
},
"product_reference": "openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x"
},
"product_reference": "openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64"
},
"product_reference": "openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64"
},
"product_reference": "openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le"
},
"product_reference": "openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x"
},
"product_reference": "openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x"
},
"product_reference": "openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64"
},
"product_reference": "openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le"
},
"product_reference": "openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64"
},
"product_reference": "openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x"
},
"product_reference": "openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64"
},
"product_reference": "openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le"
},
"product_reference": "openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64"
},
"product_reference": "openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64"
},
"product_reference": "openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le"
},
"product_reference": "openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64"
},
"product_reference": "openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le"
},
"product_reference": "openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64"
},
"product_reference": "openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64"
},
"product_reference": "openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64"
},
"product_reference": "openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x"
},
"product_reference": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le"
},
"product_reference": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64"
},
"product_reference": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64"
},
"product_reference": "openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le"
},
"product_reference": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64"
},
"product_reference": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x"
},
"product_reference": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64"
},
"product_reference": "openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64"
},
"product_reference": "openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64"
},
"product_reference": "openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le"
},
"product_reference": "openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x"
},
"product_reference": "openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le"
},
"product_reference": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64"
},
"product_reference": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64"
},
"product_reference": "openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64"
},
"product_reference": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64"
},
"product_reference": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le"
},
"product_reference": "openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64"
},
"product_reference": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64"
},
"product_reference": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le"
},
"product_reference": "openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64"
},
"product_reference": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64"
},
"product_reference": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le"
},
"product_reference": "openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le"
},
"product_reference": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64"
},
"product_reference": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
},
"product_reference": "openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64"
},
"product_reference": "openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64"
},
"product_reference": "openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le"
},
"product_reference": "openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64"
},
"product_reference": "openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le"
},
"product_reference": "openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64"
},
"product_reference": "openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64"
},
"product_reference": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64"
},
"product_reference": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le"
},
"product_reference": "openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64"
},
"product_reference": "openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64"
},
"product_reference": "openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x"
},
"product_reference": "openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64"
},
"product_reference": "openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le"
},
"product_reference": "openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64"
},
"product_reference": "openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le"
},
"product_reference": "openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64"
},
"product_reference": "openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64"
},
"product_reference": "openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64"
},
"product_reference": "openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le"
},
"product_reference": "openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le"
},
"product_reference": "openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64"
},
"product_reference": "openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64"
},
"product_reference": "openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le"
},
"product_reference": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64"
},
"product_reference": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
},
"product_reference": "openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
},
{
"cve": "CVE-2024-52798",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-12-05T23:00:59.020167+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2330689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp. A path-to-regexp turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability exists because of an incomplete fix for CVE-2024-45296.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52798"
},
{
"category": "external",
"summary": "RHBZ#2330689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2330689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52798",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52798"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/f01c26a013b1889f0c217c643964513acf17f6a4",
"url": "https://github.com/pillarjs/path-to-regexp/commit/f01c26a013b1889f0c217c643964513acf17f6a4"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-rhx6-c78j-4q9w",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-rhx6-c78j-4q9w"
}
],
"release_date": "2024-12-05T22:45:42.774000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "workaround",
"details": "Avoid using two parameters within a single path segment when the separator is not, for example, /:a-:b. Alternatively, you can define the regex used for both parameters and ensure they do not overlap to allow backtracking.",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x"
},
{
"cve": "CVE-2024-55565",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-12-09T02:00:45.255738+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2331063"
}
],
"notes": [
{
"category": "description",
"text": "nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nanoid: nanoid mishandles non-integer values",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-55565"
},
{
"category": "external",
"summary": "RHBZ#2331063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331063"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-55565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55565"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8",
"url": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/pull/510",
"url": "https://github.com/ai/nanoid/pull/510"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/releases/tag/5.0.9",
"url": "https://github.com/ai/nanoid/releases/tag/5.0.9"
}
],
"release_date": "2024-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nanoid: nanoid mishandles non-integer values"
},
{
"cve": "CVE-2024-56201",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2024-12-23T16:00:38.768252+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333854"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Jinja2 package. A bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of Jinja\u0027s sandbox being used. An attacker needs to be able to control both the filename and the contents of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates where the template author can also choose the template filename.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jinja2: Jinja has a sandbox breakout through malicious filenames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has rated as a IMPORTANT flaw because an attacker controlling both the template content and filename to execute arbitrary Python code, bypassing the sandbox.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-56201"
},
{
"category": "external",
"summary": "RHBZ#2333854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-56201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56201"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56201",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56201"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f",
"url": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/issues/1792",
"url": "https://github.com/pallets/jinja/issues/1792"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/releases/tag/3.1.5",
"url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699",
"url": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699"
}
],
"release_date": "2024-12-23T15:37:36.110000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
},
{
"category": "workaround",
"details": "To mitigate this vulnerabilty restrict user-controlled template filenames, ensuring they follow a predefined templates.",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jinja2: Jinja has a sandbox breakout through malicious filenames"
},
{
"cve": "CVE-2024-56326",
"cwe": {
"id": "CWE-693",
"name": "Protection Mechanism Failure"
},
"discovery_date": "2024-12-23T16:00:46.619763+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333856"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates. Jinja\u0027s sandbox does catch calls to str.format and ensures they don\u0027t escape the sandbox. However, storing a reference to a malicious string\u0027s format method is possible, then passing that to a filter that calls it. No such filters are built into Jinja but could be present through custom filters in an application. After the fix, such indirect calls are also handled by the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jinja2: Jinja has a sandbox breakout through indirect reference to format method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as Moderate due to an oversight in Jinja\u0027s sandbox environment, allowing attackers to execute arbitrary Python code through controlled template content. This requires control over template content, making exploitation possible only in specific applications, thus limiting its overall impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64"
],
"known_not_affected": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-56326"
},
{
"category": "external",
"summary": "RHBZ#2333856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-56326",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56326"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56326",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56326"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4",
"url": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/releases/tag/3.1.5",
"url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h",
"url": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h"
}
],
"release_date": "2024-12-23T15:43:49.400000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-05T10:48:52+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.17/release_notes/ocp-4-17-release-notes.html",
"product_ids": [
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:0875"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1e88032295ab6a57e87102870144234fd4d00af4d64692998d94aec1da0fa7e2_amd64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:1eca125f06e0accfef2233f5baf68c683a05e10e7edafd3894b10a5c9832ed7b_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:ab569dfb349e365f7ad9dc2c90ab40bcc45daaaa829286f9c9020c3efc1e72a0_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9-operator@sha256:de584540e7ce6842dde472058d62bc0460a00a18e4d523629cf3a2ce2d3e7d90_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:33303a9781c6d420d2a0927c6fc718d85909375547022c542bfb2cac54f908cc_arm64",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:4a54958572d4ca2a7b657e81dec2d85fa1f282bc4e557d1a3d222720d2fa40d8_s390x",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f3d37e0fbcdf83bc5292ca7a7b5c495aad0d8611211bb72499492573a797ce54_ppc64le",
"9Base-RHOSE-4.17:openshift4/ingress-node-firewall-rhel9@sha256:f4e365279bc71a9e4b34354f4f92db16df722e04d90b19bc2abe3f85d896899f_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:62e5a756d35969806d9e2a2bb1f8be00925496a92188d883c259f1baaa168d83_amd64",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:99c9a64e58f220e5494d162c6a7c5ff10fdef49e96ed5f48c0e7b5937c2cc12e_ppc64le",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:9cebbb5a9d84389762dcc411ae5a05899ecf3e7b66eba09a176cc9bd8de8bbdc_s390x",
"9Base-RHOSE-4.17:openshift4/kube-compare-artifacts-rhel9@sha256:fe8a449229062204e3ac9650b357e3d9414d7be467173b067bcef8e7b0d0c6e4_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1ad9d78189f80c226312ed8fb18a117b71cb128cfa965c35dfc14f62b8c51c16_arm64",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:1f7a9fbeab09bf9d95f43a786da9e4cb550f0aecaed7c1f4b948a1386b166fdd_s390x",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:bf1197d47e48a2355497deba62bdfaab5c43dd284db5bcaec69262329667ba6b_ppc64le",
"9Base-RHOSE-4.17:openshift4/kubernetes-nmstate-rhel9-operator@sha256:e7392111911a2d8117276327aa5488284b596ba88444159b0a8d97c7c4f129e8_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:4997f775c57c4ff923a0c49545142916eca0c14053031b546c499345a74b3fe4_s390x",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:8095681987eca0a5f01d897bf19a5f3a48cb51e71b186e188f8c7430e635fd68_amd64",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:b8503c978f235e2451cafd50cc07ccf3cda5d4842e6fcb57b4e1d713f61e6f4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/metallb-rhel9-operator@sha256:e1a6e1b8ec81b432b87eceec71184c13349d24ed00b075449d0cfe24f94dbdd3_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:05995ad1c1db13694adeacfa2ec37199001f9eb0b37618f3c392c4bce85fc106_arm64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:255aa4123181bc6045d1c9bca83add43b8e64b4b7c614f6d2f111fec8e098a0f_amd64",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e3ab6aa63cdcf2e7d086d9ca6a25117ccb287e2165580a4bcd682d35e7343438_s390x",
"9Base-RHOSE-4.17:openshift4/nmstate-console-plugin-rhel9@sha256:e4a88c8181e4c02121ad638a4e0220b176bda1981f72e26574696cae40f15aef_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:1cf906f1a9b35a3829990f8a802e4e617de7b32a091d22ff3b291b02a6de1629_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5aedff51d5c18d6e6b0834efabec523490a6fe17571ed181b9094194d2532bff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:5eb3e62ff2a8f4bbc51513081415a964aaaed2b9770d6111f69bc31df891d00c_s390x",
"9Base-RHOSE-4.17:openshift4/ose-ansible-rhel9-operator@sha256:9ed511e02d2f30114e2f3772c99f3f9e7037a3748d8d2da39f059091ea6b02f4_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:0707f47c27331e77140e17cbd5ba0dc5324096d165ebb5078df7b4bb6bb4ef64_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-container-rhel9@sha256:903d2ebcacc62a83791f20a45e5c2567590970e96bd0137f2f60babab69dbf2f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:18d5c5be99e11ee338e7f1da1a0c0e101eadb1dc27fc0c94ab37adf1201b2ec5_arm64",
"9Base-RHOSE-4.17:openshift4/ose-aws-efs-csi-driver-rhel9-operator@sha256:78bdba0bc09e170409dfa752cb94db9d466474025bc16937591f4b8e033964cc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:145a77ddba31938dbde8e2af86f6abb9c7dc4f456045831dccd56ace44b76f5d_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:3528168affa46f2d770a100679d27a279a65bae7d2004b4f8d7a64b135202b98_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cloud-event-proxy-rhel9@sha256:4b081ecd88f0c86eb91cb981a40ac96525809a72e79554f946efb79dcdaf2019_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:8a3b5a8ee124bf13a3025cbd88c4ebbf89cb9284408fc51bef60a22f6dcc5984_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:b222b335089d47bea484c41175ed6fde8db7e8b728ecabe27f947e714bd2e709_amd64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ddef711ae9f889b968c363a9223ab39c287e377a39257989528efc831cc79922_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-capacity-rhel9@sha256:ead6e942e805c3310bfc88be9c5ee8376c8471c1fdd452a591cf9832543f70c8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:50e906a7d61346a52db027f988783613c9b4ea95980e7badf25f72cb63bb0de6_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:95d6c4d07115565d7553dfe83bc92e4058a470d62225cc881bfcca896f435761_arm64",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:e8322ced2b0d72fb6627c7706b8b0291373ef6edacec35e1f9abd95fd1894ff5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-cluster-nfd-rhel9-operator@sha256:ef9ecbf718260d1b22a2b90be45e8d25c85cc855cc72491acdacdfb9eca0160b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:4fd0ecb1055c66be255edd12f0931996ae47d3724bcc59347d066cc1116acc3a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:5558a53762bfa34f2b4993cc2e220efc6e97e8aaf46a35980478910fcc356aac_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:c34d19cda2b2fd5f5751aaf1444cc809cefb93f837a711778f0d052b9930f24f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9-operator@sha256:dd4f4653abd33cede508fefe63322a210d5d333669a963a669e101cb0f964e73_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2362d445dc5203ebe7fa945ef17e7a83f47f088f807f5c3a70c8c6ff55ab2956_s390x",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:2d97a15ab868e75547dd1434e6e11f8a26c8457b05ee0444edfc4924cfa1a1ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:6809176cbbc5e2912a6d7aa1bf77f09d53f3f12904d6d25c33fd9e48bf50adc4_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-clusterresourceoverride-rhel9@sha256:a012d869ee8ffb3c2f824cc33abd32b28c9271671952eaa517fafc8efd1a3eb6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:5cb6a4015f584d0661fd9c54273be62def2a122ecf26dc70188598b292927e18_s390x",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:6261df79c6bd38fbd51054e59c9e3c6ee2717d03de41df9d949fcd0134076c26_arm64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:c9cf46958229e197412871b525ea7c227ae91eacd816efcc467f703971963ed8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-csi-driver-shared-resource-mustgather-rhel9@sha256:fc7a113b08e684f73c4ea965e293be2cdfac8df3a333bdd1aa3a74812cda2d36_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:127883fd729d44af53959da3c201a908eb7ed8b50ae310e1e563560b0bc78667_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:2417aec8e0b2050b454863428b4fe6b59ad83e91be0d8e298608ccadb7445990_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:799bef59ab91fe26aa5820300124497440060655c65febe87e6f7cf736ffa165_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-cni-rhel9@sha256:f19c2030e23eee0125ae76ba2f0254265c8ba39006e3d67ef68afcd595966330_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:329dfb2f2e1d85d9b6269c56e8db56ca558a90e58134eec1638b8db879889663_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:455e5d122c21729ae5570315246b073ec508e35d22d66cafab0ecc3546edb745_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:729c8a34064d11727bbdfacb1f2fc85ad32bc3d9f064ccd65c76d2707f31efbb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-daemon-rhel9@sha256:8a1fd0ede2afaf6a9b2e9048b5381fdbd310d81d35ac1b5ee095e18db5ed4abe_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:128ac5169b2899a0f539abe1503c3f034ee7a7278a138de59914acaae6fbfed5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:77b4343f4dc9abdd6f1c1451bcd1c8a6e15c1372a6cd357c959ab5cb6a129aba_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:a553e3dd556f015f63d4985b4c4139010a4be0ceddf3b32b99df15ca5f0f4efb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-dpu-rhel9-operator@sha256:bff2085314371b5d7b8e80d40d458e9e28ce85250ce9d7f9e5c6561a3e068f6d_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:326ef521006c16b25c1d683d0c19fec1bdb1b19adc5092428272ca0dd256bc53_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:7212ab08680e3cd9717eae4c1159ea73c2260fce2c4803cf8fe7f6141542a6a4_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:a7b3bfdcb24c56190796092f243477fb47a80b606136705abf7f78190df09c13_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-dns-proxy-rhel9@sha256:bad6419cf3e02f6f7e94180d5e3f5cc6b019c900c2651410c3368c31e3506d1a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:0155be8d01fcb8b856a8047d0e7fd5afc664334e530b754386a7388b71514985_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:268046a04c783f8f75f1f6455f3d6a290bd521d8083bca02549f1d730a27a5d6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:a68452aee45eaa886243f30b4f9bf9212d110a5c0091caa0bf05502901f722aa_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-http-proxy-rhel9@sha256:ded0d9329353c383d1496d8e318ad849a795e8e4cf988cf858b093517a0bcbc1_arm64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a212ce3c751490be6d58eac825b1dda5617486dd6ff0af5a3f5afca275e16685_s390x",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:a92efa54f95ecfa629a025c255ba6e82d923c20679e4da74faeb81aba76ec935_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:cf1a127eaac26a67738f9cb052e56a239056adc44aeea33cac330e4c739bb0e7_amd64",
"9Base-RHOSE-4.17:openshift4/ose-egress-router-rhel9@sha256:d6bce69ef74223b0d69cb7c6980e8b1dc503ee1c1a146559a0eba3813135544c_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:115863ba2b5e6d6cd8256f1b6492a881b003c7b4f9af6ace1519b8bb993ea28a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:7a9e613f79e61eae06422999945ab9e641bee490ff3119ba477ab067b4e9a9b6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9-operator@sha256:8c097a297f89c78878265de333eae03074dc5d22041fe8fd56d1933dfe1f46d7_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:a0bf1aaf327025aebea99decef7a5ad6344ba6ed1dc8ea38695aaa26f6c8e4ff_arm64",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:ea0c7ab082f2e00ab8833ef83702d0f1add5c82f0c207ac1335a398b0741b24a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-gcp-filestore-csi-driver-rhel9@sha256:fb654fde9ab414470e63acf79b65f0e839ed1cfe554e55108cba6d18ab7acaff_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:987c65c50be5250b01a6c77426ce362d0d6065abfe401191b78f20111e1d5f26_amd64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:a05d8bb5a34cc9b6f0531956ab7ec000c4819b8903a5cdb3d84e0cb0e94b2788_arm64",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:d326e689c47ec1904580cb829fb9055db2babe0faf77d18da6fc214704057262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-helm-rhel9-operator@sha256:fb0cf19b9e000f9cebaa09f24c44147759be8b2c37ef6f2848d7e7a42c5b4aa2_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2b7f678f37582e12a48bb941115c18abbd87d5628195114a66118006d835e5df_s390x",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:2c0a52b29b3be0ced53f3581b45e3214f0a4076e71995c25ed3163dcac3e7341_arm64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:656a4eba25391d1b6e84a5e9088b425f660b19e6d5c33901a94ff913dbf380a8_amd64",
"9Base-RHOSE-4.17:openshift4/ose-kubernetes-nmstate-handler-rhel9@sha256:f547811d8750e765dd2419b2afe46b2856c16ce327ae9b3cc12ce46af59fa3a8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:280f6a3aa554caf569c33d4cc18d1ca8a151de00f52254f586c1e514d6b387c0_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:73444647c441b9d433ab42611d6789222055a433e97fdc81b0aa8a654ac099cf_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:8f324d6bf5e30aad584a4cc6f2c2f9e99358a70ccdb70bbaca90d446c89fc038_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-diskmaker-rhel9@sha256:f9264df2afb778b7ed88d2cfe391a154ab21254fe937cab2568a5c9f83c166cd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:72ecf82d885a9cad43952f25e52c85c1f91c0fd382d365e063d4f4bf42694ad7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:92855ee2eb5df1787dfe1823753ffd053c999839b1412e2b2c44315b1769ff7b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:99da31f592a7ee8444c50a0062081bd1c4e335ff789da9475cdb16316704fd45_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-mustgather-rhel9@sha256:fc4728365b1085eaa23c28b9b5cb6877c3d6cc94114dcc6ac41de1cdf0c2a34e_s390x",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:10681495112e8d03355ea1aa70c4d6e08ca54888a51237bdadc38800201e7c32_arm64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:87010abde5ae589709b26c98e5ed991fb5594c01a70f855dca82328b9dbb64df_amd64",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d3f72c058c75ee564df73398f3ad3674e64804257945c2969fc8e5a785c0f908_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-local-storage-rhel9-operator@sha256:d9944d3fcbf031bbe25bcc5dfd9d93c6c130694c346e3782dbb287703966dc50_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:17ddf02eed2261ea1139a3e04788c448e57066e22f811bb7410179dc047e09a5_s390x",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:33eee3b324a6c743ad877d6c7873e7482cdbac88a6b412cf09e97ccb02ea6141_arm64",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:684167882cb692dc0bd9f1ff290aa585d6f7f52ef6e03c96875963c9d6d1fcf7_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-node-feature-discovery-rhel9@sha256:7a0fee5626d33e2437243739de29eec53843e4de5fb8aac7bc3950d57f8dfb5c_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:00026bfc60245da5d32207e354a298600a5aa4c3eb0376b80b209ed41e98826f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:4106fbe6b983936f8ca815876f87b196127acfadad42d293a4b177c5c2599d4a_amd64",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:dda46ab3e6482fb66448c5eccb53273444b7b062148130740fb6d49f55cd7b48_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-operator-sdk-rhel9@sha256:fbfe4c0156f73f4b6c97c1bf54a1c1efb88b0fca0c80a62264515b7194b61491_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:637d40a2b0387720b850a93870a2476a0ce20f8be4db72b83f4c486dac2bb515_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:7016a37ee628b5e480d1e43706c5d24277d5b400570734564131af831b3debaf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9-operator@sha256:dd68536555a7ca8efa9845103e5b1fabd5eaa955859de93ca43b0db1a98c5549_amd64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:49ecab1c43e885d2d6463c482e7ae38db43a396ebc1a948babadee34da0cad63_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:9059ac819214858cb20be86531eaf0b9ca2d6b5ccf5c83b909fe7255743aae1e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-ptp-rhel9@sha256:ae77152c49a50479263503ca8d3d7e0e509cb5842a9df75914d2cb8be5267009_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:0511526d94d41e91dd4fe9932bd57b8351c710f9c83befd8e7b60739871a5262_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:368e1f4b988fa479c2c99a3e68e93601d7a21b6d6b09f46122a2130b379f509b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:b4624536db7905801f87fcd2efff349a6770ea54cf2ca4598b13d4245132f9f3_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9-operator@sha256:d26015321e279b110e5eb43ba24763b118a0dacc5142cb4792f416c6e845971e_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:0db99ae4d5167f46b6ef02c64ff355be1b5356348ad7b1bc73993c06e9c69385_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a0ca74d42a0a56d4f394b3cc40c989dcde0218a6b6dbb7e98316a7ace6c69f02_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:a70cb4a389d770dd681ec8c81e077895d1afe5a9d1819d7ae2398c7fac9e6d01_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-driver-rhel9@sha256:c2d55a88e0e9d11ea5dfe974775601c75cd272e39fac2b12b0060f0fe2f00d82_amd64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:122e389a8c505a18c2ae3a1bc273149954e1520e23aa37f50cacca1de9217be0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:1729647a0176fbeaa9a349aa6c3a12e3766307705565261e275db848f2ee7aae_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:368bf42bb235aa1461c854b7aac12b15a66caae6f409c4fdd93eb5ff37a60b42_arm64",
"9Base-RHOSE-4.17:openshift4/ose-secrets-store-csi-mustgather-rhel9@sha256:fae5d651b0e38d8c0b9ff17580528b60c6b16a97dba6f30ba1e771010c06f9fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:1b4b180ede0274092fc9ad5613046b8da27b4555ef795b43c62a8a3cbdf03490_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:453298bea660e9a91bf39759dcd7d82951638a5dd768e7c7eeebb1fb158c2cd6_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:4e40b44ad27ddd0c9c7ae2fc597b90111e62449eece37284cef62bbcef86f3b0_s390x",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9-operator@sha256:96f59d7c4c00a496d84dd1755217beb5da9a3aa4eed86fa1f162db7eb2757629_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:465d65a6e030904acd9dc6d03d22b142dc12177b2a6bbf2728bc1f4eee2365fb_amd64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:48404695ef72bb33bdc3f167ac42d915beaf445296f5f7d06a4699f91e06d6ed_arm64",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:bf834149ba70f20ebb52273cb5c11fd9406aa36397a06b96762df5258463f398_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-smb-csi-driver-rhel9@sha256:f6916556cd18a46007e52201fbd63bf6970807a91291a2f237167b05a9a6b3e1_s390x",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:4a30e172a32df2a6f2e6c349ef9d14718ab1628d3371e090960a52802344aec8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:def5c1554ab680ce6aee0209bb75e00351bc9fa950f26f308809ffd68e21e8ed_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-dp-admission-controller-rhel9@sha256:ed7430f74d293574fe96c6026d8e42d251db508ad78b2944cd64b5c771209dd6_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:46928904c6a2522a46a0acc7665b6fd28f8df5631a7d68c4aac3074bafdc0f7d_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:48da916f31335e6d5ad58113d514bf187043544e71d55aa9e9b93aa526cafadd_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-infiniband-cni-rhel9@sha256:c959fed957cef20e34d06f07005c2c59d2469dd9959e2d2a554f7657e950e840_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:2f6845ce0d6b3898f04434d720fb1281e24b88fb83d32037453ed78ac921385b_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:3fed39281a77bb38ec1a5f5344326749671e1729b02454f42365d87d346c7076_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-config-daemon-rhel9@sha256:a550a750cc2172b2f799027fbb5c6958b67c29493410c0e4a48d0ac96c0523d8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:3a3fd75075a8a3d2c1562f80f0dc69acb57594f9ffa566cd8a231785c6e6d688_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:9c3a920f5807a1e8360b415221fb7b7e477731cba55024d2e143f2c91fc83a5b_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-device-plugin-rhel9@sha256:f897afb6d85cefe6d6da167d49aa935848733316d2e5efafdd592b553bfdbae9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:5c033d5855160db93135e24fe2c415ea260d50ea34bd5f3936268a1ea20529b2_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:bf117760a6d0b3002ac8ef40ba74ef027398478aab9db2e1975ab95522251478_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-rhel9-operator@sha256:fcc688a3c60e16cfa2ca9647ff1a5a83e22b24a29912cfc9057c09333673f558_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:771af028d9485ba39e9d9c604e6e7d0bbf567b8cdb873e0dee2d22d0f496a3c8_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:e79a78e7eb81d42f6285769451af40110c6747a5062be345d0fceb7d552e7dbf_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-sriov-network-webhook-rhel9@sha256:eea8ee4ba8654745c9cefb59fc413ecfe9554b6dcee97c869fbbd2169e185d49_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/ose-sriov-rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:15e1eae05f975630489ce3805c038a18ad10eb80f81856022e5c2e3d28e05f6a_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:8b540095b11b7a73f5854bad8d0d1581b320edefac40efc7091f5f0e7cc58505_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:9426812fbf4807ff1a87825964444266849413c927b162d9894e6fd44e5d270f_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9-operator@sha256:bdafc919ec339edff688bdf6375e265a0270086f73d957c353f03c3b324ea832_amd64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:2516561a150b73b3e9be09dc387233c120818ac05cc6c577d3234333eeeb019e_arm64",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:31cf40cd63566e8c56abe2947dc56f885f59327518f752da37bbb4ec8e2de3d9_ppc64le",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:8eb0e1c8ab9ba3fd65c02150a0d0907c8d96adcb0fac4da5d772b9900c88365b_s390x",
"9Base-RHOSE-4.17:openshift4/ose-vertical-pod-autoscaler-rhel9@sha256:e6b9f5c9b6ad44416a8fb8ccc0f9ba56b1afd6ce7fe480f1832f817a0242b1c0_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:2a92a49d48dbd9a6ee431619c7338afc6d000e21e82cb2e04cc1a80e60ec089c_arm64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:5a65b526839c5b8050c480feea87e23e3c590e0cb366edab8e746da7aadc444a_s390x",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:67df1d20d92f3320539c2273aae9baa8af5670dff8d5241dc2b2d33f26df14c1_amd64",
"9Base-RHOSE-4.17:openshift4/pf-status-relay-rhel9@sha256:a9ce48f171099e2d12e05970adc01c3054548fb8ff30775209abeddcf9f0c312_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:0029267f4560cbc9063ad490a021334d2d487bdd38eeb7de44c1a8a70e7a163b_amd64",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:4e9ba116722b3c8451e31119b13bfb4a6f537181f0406101ced328aa4fa0fcf8_ppc64le",
"9Base-RHOSE-4.17:openshift4/ptp-must-gather-rhel9@sha256:dad699987201d2afa04045c50bf541aaf434866d94b9ad66a341c644fa0a1f0d_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:1c67f1800462fc235fd577ae4123cce3e73ebe198b995ab56fa979ea2b6c942f_arm64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:d31102a8f91b6ccf77ebcca553ea1f62f1f39484d27e0ed34c9518f6cac2b23f_amd64",
"9Base-RHOSE-4.17:openshift4/rdma-cni-rhel9@sha256:fec3cd94038aaecc68a6daf8479dcd41260fcda28fcc4a15c1ff4047bd570c04_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:5d26da1a0a55c6aa44cb1950f5e137d64782901926e3aa1c176a50cc97025834_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:96ce07b8df9008a375f02422a684d607cd61b62322e69920e2ad0a94d9f004bf_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-cni-rhel9@sha256:c664675fb0bb3f6a3e8d6c7012a165f8ac21effadc0fe5ed0d5012cc4ecc3fbe_amd64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:51f6b0482d77c7e6ba1ee93c40edf20e9f5af96dd6bff88ba15900eb70573b4f_ppc64le",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:e4609911df893504861ed338145e3c9d5b639dccf5f336af19a82c24606774cb_arm64",
"9Base-RHOSE-4.17:openshift4/sriov-network-metrics-exporter-rhel9@sha256:f60558d5bcf6e51576a45dd20e4c314f75e46cb195f7c6608798ebf5cc883edc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jinja2: Jinja has a sandbox breakout through indirect reference to format method"
}
]
}
rhsa-2025:8479
Vulnerability from csaf_redhat
Published
2025-06-04 01:58
Modified
2025-10-31 12:53
Summary
Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update
Notes
Topic
Updated images are now available for RHODF-4.16-RHEL-9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift DataFoundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Security Fix(es):
* express: cause malformed URLs to be evaluated (CVE-2024-29041)
* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript (CVE-2024-11831)
* http-proxy-middleware: Denial of Service (CVE-2024-21536)
* golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html (CVE-2024-45338)
* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for RHODF-4.16-RHEL-9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift DataFoundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.\n\nSecurity Fix(es):\n\n* express: cause malformed URLs to be evaluated (CVE-2024-29041)\n\n* nodejs-async: Regular expression denial of service while parsing function in autoinject (CVE-2024-39249)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript (CVE-2024-11831)\n\n* http-proxy-middleware: Denial of Service (CVE-2024-21536)\n\n* golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html (CVE-2024-45338)\n\n* golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing (CVE-2025-30204)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8479",
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "DFBUGS-1702",
"url": "https://issues.redhat.com/browse/DFBUGS-1702"
},
{
"category": "external",
"summary": "DFBUGS-2603",
"url": "https://issues.redhat.com/browse/DFBUGS-2603"
},
{
"category": "external",
"summary": "DFBUGS-714",
"url": "https://issues.redhat.com/browse/DFBUGS-714"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8479.json"
}
],
"title": "Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update",
"tracking": {
"current_release_date": "2025-10-31T12:53:44+00:00",
"generator": {
"date": "2025-10-31T12:53:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:8479",
"initial_release_date": "2025-06-04T01:58:44+00:00",
"revision_history": [
{
"date": "2025-06-04T01:58:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-06-04T01:58:44+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:53:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.10-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.10-6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.10-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.10-6"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.10-5"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.10-8"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.10-6"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.10-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.10-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.10-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.10-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T01:58:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8479"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:8df6be202d7352da9fe45510e26a1fa17ee29b43851bb34f92a36d550145d1c8_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:9e722e6ef66d768ad25c4029a6f4796b3035a8e0bcab1eea3b0b9e3e0ac80a2c_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:b569f1f1cc542522fad6a9664ffe83135e0fac221da2db858a1e1b3dafac2a78_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:13f94d78bbea30a1e87a3b71f167272268f88ec6cadd46baf0d41b6c78001207_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:266dcc4332512803feb0c2841bd447d5730512d5cd533814a55c7a73fdbbe92f_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:88b3cbebf2d0d9959c9485e3bd92e8d20f5d51781b3e5e3604695d24e3df5ba5_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:8e3e4d47fce84f50a8bc3a6564e588ffce84082c32026ab16e300cb4c9179f34_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:0995b3e355f37e1e1ddb7a81afea0a2e1d4b1dcddb8fda460694af1f54b2b852_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:2271d7696060f1308cddc9f0b39484a3c896ceae0934a22a4967e4e550c6411a_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ee6ebb4c88c990561f36695a0446d2a5bbed74f37a8bb641ec05dce0c7ae4907_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:092bd757a65a2932ec92a31e745c21125e4fbda1058e75e8f53e35bd757182a7_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7139e479209a6a4ab60bd398220a48ca78a6cdeabc09619371fb80bba2beeba3_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7d0d36581b0f43e6c4611165cc7ab6ecc401971d50aa0d7ffd43ce7314c1aec4_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d95d17587043a5980a4a9e2c40474238b17270b48cd28d9286abf37e8dba5229_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:56e8b7e50e7f4e018cbfd59710ecd4283e8faa1c18d83f8acd40ec0821f540c6_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:eddd4bf5d536fad6764c7daf8b36709630566a916e3c9a9c38cb195037e13f36_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:faace26bf5dcab6de85a350b65dc13529b6b8ea1e4efe54a4f1cd0cb94f72a12_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:02275650f8f2a4432f74ce61d2ad77aef628a49e15a5ba968862583875356c5b_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:1f39071fe02977accce7c0ef31b71f6e337dbb6b7f918ca7f73c34dd2c1197de_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8ca8073d40aa0d9257094baf33dfa16e56600556259d91306d6d6d7727bcdebc_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:0a19077800fec1f56d21b7db0d71da69f0c2e736be6428c854563288780f76ca_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:3062c425ca8380884d424b4d96ca08414a9369337f3056c890b197dcca313be4_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:63b44fd5c9a991e008ce2af1745d5eb280252874a50cb87254bb599a28e0db78_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:ef0121ba44fc3e770156cb122d13f3ca2165ef6578995814f6053752eacf0ab4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9ab03e07b64cdd003fce3842d5a3bef77c8fa0b0b7b331d6630549ee14d2be22_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:9f944006b8fd489a75ea48598266605be7931feba94346472c030a3842a56cdb_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cb63f2994222ad8736a6f4fd757fb683162ab3c16f59d9a17253b01dc940650e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:0190226401fdd645ab2faf41da6b3d3484d73446116cfce28b4c4ccd7f9535a2_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:83e63a6cfbcb9b24fd0d7ac47d436801d9488ca2ada18e08fd6534f9d5f5bf14_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9d6259d776788968a8c73580666287ef3aca96f2f233d1113ed508d93342cdba_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:14c09bf9ff056dba8f9f7cbfe8a01a573b3e1ea6435121afad703f85f2127fe3_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:407dc5605eda149ce8077c729d25e611a4da61390c26e0cca7e79a04f4066799_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:c3b0b210bf0e79c22b61973d7a21a6df93dd64b0b86744ee3e62f89bb777f12c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e651f24a541ec7e68d58918c02ffe1f840b042088fb6335947d60713d2634ade_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:2c678413a9f31b6a94ea6f89d48e425acb0de6bdb682dd9b5302279675f20af5_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:874b75ca4d3c05e0146be35fd6a52585bb287c8fdd2450abe391e7a7d2983d17_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:b41d13ab01eda036441e7c4b937685ae824803fbe9df0cc4ff921ba62f65aa27_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:d078327210b3bd99b49eb8eb19af66c5807dffbc2e2e4aae00acebd58ecb520a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:72c00c654b5454542fc46516459c42cec8a0df53e3e692391eae178314f38b4f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:d720823a6088c721948429c16f8ff14963c06c5d502b78c114d01064d3e929fd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:da249713d3306e6fa468fff12dca94b087bf4e6cda935a8d588f913a72660ae1_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:22b963c99e8f4c304854bf5deb4d93a22f284c290c0bad71989c1b9661faa545_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:e38f277a083409ee3349b0ea72198de5c34a3933e143529f9fec3fff519b997e_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:f27062101d6044e1a99866ffa801b60c4042f37fab5711180fe6fbdc111e1b32_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:65678188e42c0f2b45911747c59f76729d65ba87f6be3550262326f0a851716c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7a7aebbafb68c841f26cdf8e01be77669957d19673a5e590aa3eec2905327444_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e72b47011ecd4293c5140280a6023744b847ec811e67aa66c1c55817a9e29c53_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0bdfb394fb0183f5b6f64227ff7e679f7e0d6d477cc1552902c10afd1ba9f99d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:5c93247842fcfa844ae884bd7723aad467037f541c23792a5938c9d8647cffaa_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8316c12d61aacbd9e0f6c47b86fda7d13147c70cbf1879ea9a329d3fcd9908cb_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:d3698dae91ba7ac556dcd6bcb6e876b9e2e145bb3b7357f616a36eb79c36e13e_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:21f9abd9e6ee1919acbac1bdeb8da0e19ef487d8194d1a7b01bd5dcbf59c53b1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:89ce5b5d2a834bb0656638a7ef18e81f72faf7ceb247d953d333aaeb38126456_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:8ba9c7f82c772c0b463e28974e18b5c0a8bc628cb14321ad55c683718ae1f144_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:c12a1d3140f14ff68169284d6d971ae146453409ae78831f167abd219b7a8237_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:083ff820bf60832efddb8cddf21083a3f331040c23fd9220c1ef261b31ecded8_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:3ff95e3204a6498cdc70214ae90f0c2f78e8db89142eda8ba9203d5f8fb82636_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7d804c6a8db583f9a9b7da10a31b0354afc59a8af45dfeaa420482f8370895e2_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:09aa4ad2452ba4039e715c7fd46173b9516004709039a17f4a425e2975d7c4d7_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:a83130b15970a595987e30eee691ce3d61d87f7d09b7aa947ed4194f5dbfe2cf_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:c212acdc3bdb6563063373911fcca169998cdce2cfc40460fc175f4403e90d99_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6b04ecd021150e18bd7eff95782776234b9eb34793d729df9e0ba8e063a76d05_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:759ecf8e346f20e42144034420696dc4242085f9f62d2f27eda18aef5f5ca0be_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:777eb594d74aa36416be4ff29a91bb3376c65ae6faaf699acaa94c80b4715a4f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:dffb2b522f5641f2b23d58f454ebcecf229ce7a745dc4f55235c9701584acdef_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:992cf0fd0be01edaabc747055a5ab54e87cf300f15c7f56f915e15a9c8611681_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:9b25351ffef71bd1f930b94a74e5949e315fd5a2d96b8cdd4d0334f8405046cc_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a415eaad3cec7de971d55aaa029104e94ee0517bbf7fa2b3441b262f7df3b43a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2e61ebc92d92d602f27c7de085f35e20a8aa7370c6e279147a1504e6f50a82d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13df48aa60a17df71ac9c94c7d8d34a9c538636f102ab6d0bb07afc01110678b_amd64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:6166bdaa8cf7f8ce29556e3ecdebe4b2408f47d9d86d638e63a1ffd1b5033246_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7617bef0ff752c391968eaf8a44071c523004a398190900b94a34ad18eda790f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:1df3363b4e4ab2da1294c190bd2f251d3598e85b44e118c9436166c49c7a5d1e_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:4e6e05dd719c1574b62d1f7eb979b8fb97029247ce6018684f404647ca4efc10_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:75536acc8a28f6af097f3d601ffd95ba3f72413ecaaa8c87cc79c0dd3b91ac0b_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:324765db75f7c4db2d6a37788d7f73caf7479e2c920ffdbc8ae356e0d777fd45_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8c5cb83ec1a1a0b88e7d90d0af33492afb3e4101974ae534ecd56384442e591c_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:d4214d21e418e1df1c286456778b52ebedda0d1fded37b7fd11a3242380621c5_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:e40a6ba38a84c6b01732959186a03d458b21717b464773779578ddcacbea89e5_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:2729388f45fc61f655978ed14f37e18c6ed16f85309e78466c4f1341b5f36a6e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a022710a33d5ff1fc41620f9f42f66840d44d8815524f72a9f84d4c401198ce7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:eba1c48a3bc7623886c4cc6f2a92929cca098b547904e90c715caed421d34600_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3b30801ecae02b61c991745cdebb78c23001030dc8488a49150d88925aa00cde_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:5dcbea69a771dc585b91b522c2651b074ac46069714b423d9a5f5c7373c90f70_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f6344d640c1c58cd3361927ba1e2b6e59263687b45955a681f413778162b602e_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:2e5344edbc939b55a5799548a2350431f4dc3924677f29493ba4c12009129cc2_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5a581b6418cb691fb4b04443bd5c53757aa74a18dc38784aebb68c0d4ac94199_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:ac2facf3fa56a11a05d12f007a4cf3040118d5561425d5cd0cae6a793d9a7fa2_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:23ff8963c2045ee1cf124a6f891316bbebfb07503abdf7fbfede068336485bd9_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:a30b6a0d444ede68c51c2c54e6fad440c68d05bd4a36deecf79f550baf42c18f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cb3b973a8615dde69bceec9eb8b7c9fc02b0e29573cfe582aa5e3c77f3bd146a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:cccbd64631690db519312ca7be0b9ed51f9ede127858f5f1afe780ff4bbbc163_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:5cb3e9a9068002a4afc179906295ac242e03e4fb180fad83296cc6086d6e44f7_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:917339caccb55aae090f31407d7353ec5fc35a80187bfe8f658a443b7d7ebe35_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c28f02f01ac29ebe613735aacf82aa48d00c04ea72588f10521884ca43ef9b41_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:65631c9e67c6c7fc8d8514609a7768e8bb75592e2442358e3958ac6fb0ffa9be_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:9fe8900d98e184012706518bbb76786726c71bad2b370618094887b90359a4a1_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b4ea673a120d714e6254c3a209a460ee6e5f3cb39126f22772506bec075fb347_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2024:8014
Vulnerability from csaf_redhat
Published
2024-10-22 01:05
Modified
2025-10-31 12:42
Summary
Red Hat Security Advisory: Network Observability 1.7.0 for OpenShift
Notes
Topic
Network Observability 1.7 for Red Hat OpenShift
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Network Observability 1.7.0
Security Fix(es):
* Network Observability: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* Network Observability: XSS vulnerability via prototype pollution (CVE-2024-45801)
* Network Observability: axios: Server-Side Request Forgery (CVE-2024-39338)
* Network Observability: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* Network Observability: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)
* Network Observability: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* Network Observability: Improper Input Handling in Express Redirects (CVE-2024-43796)
* Network Observability: Improper Sanitization in serve-static (CVE-2024-43800)
* Network Observability: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* Network Observability: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)
* Network Observability: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Network Observability 1.7 for Red Hat OpenShift\n\nRed Hat Product Security has rated this update as having a security impact of\nImportant. A Common Vulnerability Scoring System (CVSS) base score, which gives\na detailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Network Observability 1.7.0\n\nSecurity Fix(es):\n\n* Network Observability: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* Network Observability: XSS vulnerability via prototype pollution (CVE-2024-45801)\n* Network Observability: axios: Server-Side Request Forgery (CVE-2024-39338)\n* Network Observability: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* Network Observability: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)\n* Network Observability: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n* Network Observability: Improper Input Handling in Express Redirects (CVE-2024-43796)\n* Network Observability: Improper Sanitization in serve-static (CVE-2024-43800)\n* Network Observability: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n* Network Observability: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)\n* Network Observability: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8014",
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312631"
},
{
"category": "external",
"summary": "NETOBSERV-1377",
"url": "https://issues.redhat.com/browse/NETOBSERV-1377"
},
{
"category": "external",
"summary": "NETOBSERV-1509",
"url": "https://issues.redhat.com/browse/NETOBSERV-1509"
},
{
"category": "external",
"summary": "NETOBSERV-1538",
"url": "https://issues.redhat.com/browse/NETOBSERV-1538"
},
{
"category": "external",
"summary": "NETOBSERV-1540",
"url": "https://issues.redhat.com/browse/NETOBSERV-1540"
},
{
"category": "external",
"summary": "NETOBSERV-1564",
"url": "https://issues.redhat.com/browse/NETOBSERV-1564"
},
{
"category": "external",
"summary": "NETOBSERV-163",
"url": "https://issues.redhat.com/browse/NETOBSERV-163"
},
{
"category": "external",
"summary": "NETOBSERV-1666",
"url": "https://issues.redhat.com/browse/NETOBSERV-1666"
},
{
"category": "external",
"summary": "NETOBSERV-1667",
"url": "https://issues.redhat.com/browse/NETOBSERV-1667"
},
{
"category": "external",
"summary": "NETOBSERV-1733",
"url": "https://issues.redhat.com/browse/NETOBSERV-1733"
},
{
"category": "external",
"summary": "NETOBSERV-1746",
"url": "https://issues.redhat.com/browse/NETOBSERV-1746"
},
{
"category": "external",
"summary": "NETOBSERV-1748",
"url": "https://issues.redhat.com/browse/NETOBSERV-1748"
},
{
"category": "external",
"summary": "NETOBSERV-1753",
"url": "https://issues.redhat.com/browse/NETOBSERV-1753"
},
{
"category": "external",
"summary": "NETOBSERV-1766",
"url": "https://issues.redhat.com/browse/NETOBSERV-1766"
},
{
"category": "external",
"summary": "NETOBSERV-1779",
"url": "https://issues.redhat.com/browse/NETOBSERV-1779"
},
{
"category": "external",
"summary": "NETOBSERV-1783",
"url": "https://issues.redhat.com/browse/NETOBSERV-1783"
},
{
"category": "external",
"summary": "NETOBSERV-1788",
"url": "https://issues.redhat.com/browse/NETOBSERV-1788"
},
{
"category": "external",
"summary": "NETOBSERV-1798",
"url": "https://issues.redhat.com/browse/NETOBSERV-1798"
},
{
"category": "external",
"summary": "NETOBSERV-1805",
"url": "https://issues.redhat.com/browse/NETOBSERV-1805"
},
{
"category": "external",
"summary": "NETOBSERV-1806",
"url": "https://issues.redhat.com/browse/NETOBSERV-1806"
},
{
"category": "external",
"summary": "NETOBSERV-1808",
"url": "https://issues.redhat.com/browse/NETOBSERV-1808"
},
{
"category": "external",
"summary": "NETOBSERV-1811",
"url": "https://issues.redhat.com/browse/NETOBSERV-1811"
},
{
"category": "external",
"summary": "NETOBSERV-1812",
"url": "https://issues.redhat.com/browse/NETOBSERV-1812"
},
{
"category": "external",
"summary": "NETOBSERV-1813",
"url": "https://issues.redhat.com/browse/NETOBSERV-1813"
},
{
"category": "external",
"summary": "NETOBSERV-1816",
"url": "https://issues.redhat.com/browse/NETOBSERV-1816"
},
{
"category": "external",
"summary": "NETOBSERV-1819",
"url": "https://issues.redhat.com/browse/NETOBSERV-1819"
},
{
"category": "external",
"summary": "NETOBSERV-1848",
"url": "https://issues.redhat.com/browse/NETOBSERV-1848"
},
{
"category": "external",
"summary": "NETOBSERV-1884",
"url": "https://issues.redhat.com/browse/NETOBSERV-1884"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8014.json"
}
],
"title": "Red Hat Security Advisory: Network Observability 1.7.0 for OpenShift",
"tracking": {
"current_release_date": "2025-10-31T12:42:39+00:00",
"generator": {
"date": "2025-10-31T12:42:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:8014",
"initial_release_date": "2024-10-22T01:05:39+00:00",
"revision_history": [
{
"date": "2024-10-22T01:05:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-22T01:05:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:42:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "NETOBSERV 1.7 for RHEL 9",
"product": {
"name": "NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9"
}
}
}
],
"category": "product_family",
"name": "Network Observability"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product_id": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product_id": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product_id": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product_id": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34155",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:06.929766+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310527"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/parser package of the Golang standard library. Calling any Parse functions on Go source code containing deeply nested literals can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34155"
},
{
"category": "external",
"summary": "RHBZ#2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155"
},
{
"category": "external",
"summary": "https://go.dev/cl/611238",
"url": "https://go.dev/cl/611238"
},
{
"category": "external",
"summary": "https://go.dev/issue/69138",
"url": "https://go.dev/issue/69138"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3105",
"url": "https://pkg.go.dev/vuln/GO-2024-3105"
}
],
"release_date": "2024-09-06T21:15:11.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-34158",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2024-09-06T21:20:12.126400+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310529"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34158"
},
{
"category": "external",
"summary": "RHBZ#2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158"
},
{
"category": "external",
"summary": "https://go.dev/cl/611240",
"url": "https://go.dev/cl/611240"
},
{
"category": "external",
"summary": "https://go.dev/issue/69141",
"url": "https://go.dev/issue/69141"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3107",
"url": "https://pkg.go.dev/vuln/GO-2024-3107"
}
],
"release_date": "2024-09-06T21:15:12.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-39338",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"discovery_date": "2024-08-13T17:21:32.774718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2304369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Axios HTTP Client. It is vulnerable to a server-side request forgery attack (SSRF) caused by unexpected behavior where requests for path-relative URLs get processed as protocol-relative URLs. This flaw allows an attacker to perform arbitrary requests from the server, potentially accessing internal systems or exfiltrating sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: axios: Server-Side Request Forgery",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as IMPORTANT because it can be exploited remotely with low complexity and without user interaction, it poses a significant risk to confidentiality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39338"
},
{
"category": "external",
"summary": "RHBZ#2304369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases",
"url": "https://github.com/axios/axios/releases"
},
{
"category": "external",
"summary": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html",
"url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
}
],
"release_date": "2024-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: axios: Server-Side Request Forgery"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45801",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-16T19:20:09.863249+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312631"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in DOMPurify. This issue may allow an attacker to use specially-crafted HTML to bypass the depth checking or use Prototype Pollution to weaken the depth check, which can lead to cross site scripting (XSS) attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: XSS vulnerability via prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in DOMPurify, while significant, is categorized as moderate severity rather than important due to its specific conditions for exploitation. The issue requires not only a sophisticated nesting technique to bypass the depth checks but also the ability to leverage Prototype Pollution to weaken these protections. This makes the attack scenario relatively complex and less likely to be encountered in general use cases. Furthermore, the flaw impacts only certain configurations and usage patterns, thus reducing its immediate risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45801"
},
{
"category": "external",
"summary": "RHBZ#2312631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312631"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45801"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45801",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45801"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/1e520262bf4c66b5efda49e2316d6d1246ca7b21",
"url": "https://github.com/cure53/DOMPurify/commit/1e520262bf4c66b5efda49e2316d6d1246ca7b21"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/26e1d69ca7f769f5c558619d644d90dd8bf26ebc",
"url": "https://github.com/cure53/DOMPurify/commit/26e1d69ca7f769f5c558619d644d90dd8bf26ebc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-mmhx-hmjr-r674",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-mmhx-hmjr-r674"
}
],
"release_date": "2024-09-16T19:16:11.080000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dompurify: XSS vulnerability via prototype pollution"
}
]
}
RHSA-2024:8113
Vulnerability from csaf_redhat
Published
2024-10-15 08:52
Modified
2025-10-08 15:44
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an
S3 compatible API.
Bug fixes:
* Previously, on the disaster recover (DR) monitoring dashboard, the detail about `Last snapshot synced` was missing for appset based applications. With this fix, the dashboard shows the `lastGroupSyncTime` under the `Volume snapshot` for the selected appset based applications. (BZ#2295324)
* Previously, when OpenShift Data Foundation was installed in a namespace other than `openshift-storage`, such as ROSA, the user interface (UI) labelled the nodes during the StorageSystem deployment and added a dynamic label "cluster.ocs.openshift.io/<CLUSTER_NAMESPACE>: ‘'", where "CLUSTER_NAMESPACE" is the namespace in which the StorageSystem is getting created). However the ODF/OCS operators expected the label to be always a static label, "cluster.ocs.openshift.io/openshift-storage: ‘’.
With this fix, the user interface adds a static label "cluster.ocs.openshift.io/openshift-storage: ‘’ to the nodes and as a result the installation proceeds as expected. (BZ#2303083)
Enhancement:
* In the storage clients table of the Storage clients page of the OpenShift web console, storage cluster name is displayed along with the cluster ID to provide better clarity. (BZ#2304905)
All users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an\nS3 compatible API.\n\nBug fixes:\n\n* Previously, on the disaster recover (DR) monitoring dashboard, the detail about `Last snapshot synced` was missing for appset based applications. With this fix, the dashboard shows the `lastGroupSyncTime` under the `Volume snapshot` for the selected appset based applications. (BZ#2295324)\n\n* Previously, when OpenShift Data Foundation was installed in a namespace other than `openshift-storage`, such as ROSA, the user interface (UI) labelled the nodes during the StorageSystem deployment and added a dynamic label \"cluster.ocs.openshift.io/\u003cCLUSTER_NAMESPACE\u003e: \u2018\u0027\", where \"CLUSTER_NAMESPACE\" is the namespace in which the StorageSystem is getting created). However the ODF/OCS operators expected the label to be always a static label, \"cluster.ocs.openshift.io/openshift-storage: \u2018\u2019.\nWith this fix, the user interface adds a static label \"cluster.ocs.openshift.io/openshift-storage: \u2018\u2019 to the nodes and as a result the installation proceeds as expected. (BZ#2303083)\n\nEnhancement:\n\n* In the storage clients table of the Storage clients page of the OpenShift web console, storage cluster name is displayed along with the cluster ID to provide better clarity. (BZ#2304905)\n\nAll users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8113",
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2283959",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283959"
},
{
"category": "external",
"summary": "2295324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295324"
},
{
"category": "external",
"summary": "2296521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296521"
},
{
"category": "external",
"summary": "2300333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300333"
},
{
"category": "external",
"summary": "2302463",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302463"
},
{
"category": "external",
"summary": "2303083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303083"
},
{
"category": "external",
"summary": "2304905",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304905"
},
{
"category": "external",
"summary": "2308445",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308445"
},
{
"category": "external",
"summary": "2310370",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310370"
},
{
"category": "external",
"summary": "2312055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312055"
},
{
"category": "external",
"summary": "2315708",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315708"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8113.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update",
"tracking": {
"current_release_date": "2025-10-08T15:44:46+00:00",
"generator": {
"date": "2025-10-08T15:44:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:8113",
"initial_release_date": "2024-10-15T08:52:38+00:00",
"revision_history": [
{
"date": "2024-10-15T08:52:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-15T08:52:38+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-08T15:44:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
RHSA-2024:9884
Vulnerability from csaf_redhat
Published
2024-11-18 14:52
Modified
2025-10-08 15:45
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.0
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.0",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9884",
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1713",
"url": "https://issues.redhat.com/browse/TC-1713"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1721",
"url": "https://issues.redhat.com/browse/TC-1721"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1757",
"url": "https://issues.redhat.com/browse/TC-1757"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1769",
"url": "https://issues.redhat.com/browse/TC-1769"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1770",
"url": "https://issues.redhat.com/browse/TC-1770"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1799",
"url": "https://issues.redhat.com/browse/TC-1799"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1800",
"url": "https://issues.redhat.com/browse/TC-1800"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1801",
"url": "https://issues.redhat.com/browse/TC-1801"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1810",
"url": "https://issues.redhat.com/browse/TC-1810"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1815",
"url": "https://issues.redhat.com/browse/TC-1815"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1817",
"url": "https://issues.redhat.com/browse/TC-1817"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1818",
"url": "https://issues.redhat.com/browse/TC-1818"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1841",
"url": "https://issues.redhat.com/browse/TC-1841"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1842",
"url": "https://issues.redhat.com/browse/TC-1842"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1846",
"url": "https://issues.redhat.com/browse/TC-1846"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1847",
"url": "https://issues.redhat.com/browse/TC-1847"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1855",
"url": "https://issues.redhat.com/browse/TC-1855"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1857",
"url": "https://issues.redhat.com/browse/TC-1857"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9884.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0",
"tracking": {
"current_release_date": "2025-10-08T15:45:01+00:00",
"generator": {
"date": "2025-10-08T15:45:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:9884",
"initial_release_date": "2024-11-18T14:52:00+00:00",
"revision_history": [
{
"date": "2024-11-18T14:52:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:51:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-08T15:45:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-trustification-service-rhel9@sha256%3Ac1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.0-1730813392"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T14:52:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T14:52:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2024:8113
Vulnerability from csaf_redhat
Published
2024-10-15 08:52
Modified
2025-10-08 15:44
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an
S3 compatible API.
Bug fixes:
* Previously, on the disaster recover (DR) monitoring dashboard, the detail about `Last snapshot synced` was missing for appset based applications. With this fix, the dashboard shows the `lastGroupSyncTime` under the `Volume snapshot` for the selected appset based applications. (BZ#2295324)
* Previously, when OpenShift Data Foundation was installed in a namespace other than `openshift-storage`, such as ROSA, the user interface (UI) labelled the nodes during the StorageSystem deployment and added a dynamic label "cluster.ocs.openshift.io/<CLUSTER_NAMESPACE>: ‘'", where "CLUSTER_NAMESPACE" is the namespace in which the StorageSystem is getting created). However the ODF/OCS operators expected the label to be always a static label, "cluster.ocs.openshift.io/openshift-storage: ‘’.
With this fix, the user interface adds a static label "cluster.ocs.openshift.io/openshift-storage: ‘’ to the nodes and as a result the installation proceeds as expected. (BZ#2303083)
Enhancement:
* In the storage clients table of the Storage clients page of the OpenShift web console, storage cluster name is displayed along with the cluster ID to provide better clarity. (BZ#2304905)
All users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an\nS3 compatible API.\n\nBug fixes:\n\n* Previously, on the disaster recover (DR) monitoring dashboard, the detail about `Last snapshot synced` was missing for appset based applications. With this fix, the dashboard shows the `lastGroupSyncTime` under the `Volume snapshot` for the selected appset based applications. (BZ#2295324)\n\n* Previously, when OpenShift Data Foundation was installed in a namespace other than `openshift-storage`, such as ROSA, the user interface (UI) labelled the nodes during the StorageSystem deployment and added a dynamic label \"cluster.ocs.openshift.io/\u003cCLUSTER_NAMESPACE\u003e: \u2018\u0027\", where \"CLUSTER_NAMESPACE\" is the namespace in which the StorageSystem is getting created). However the ODF/OCS operators expected the label to be always a static label, \"cluster.ocs.openshift.io/openshift-storage: \u2018\u2019.\nWith this fix, the user interface adds a static label \"cluster.ocs.openshift.io/openshift-storage: \u2018\u2019 to the nodes and as a result the installation proceeds as expected. (BZ#2303083)\n\nEnhancement:\n\n* In the storage clients table of the Storage clients page of the OpenShift web console, storage cluster name is displayed along with the cluster ID to provide better clarity. (BZ#2304905)\n\nAll users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8113",
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2283959",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283959"
},
{
"category": "external",
"summary": "2295324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295324"
},
{
"category": "external",
"summary": "2296521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296521"
},
{
"category": "external",
"summary": "2300333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300333"
},
{
"category": "external",
"summary": "2302463",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302463"
},
{
"category": "external",
"summary": "2303083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303083"
},
{
"category": "external",
"summary": "2304905",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304905"
},
{
"category": "external",
"summary": "2308445",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308445"
},
{
"category": "external",
"summary": "2310370",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310370"
},
{
"category": "external",
"summary": "2312055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312055"
},
{
"category": "external",
"summary": "2315708",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315708"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8113.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update",
"tracking": {
"current_release_date": "2025-10-08T15:44:46+00:00",
"generator": {
"date": "2025-10-08T15:44:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:8113",
"initial_release_date": "2024-10-15T08:52:38+00:00",
"revision_history": [
{
"date": "2024-10-15T08:52:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-15T08:52:38+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-08T15:44:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2024:9884
Vulnerability from csaf_redhat
Published
2024-11-18 14:52
Modified
2025-10-08 15:45
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.0
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.0",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9884",
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1713",
"url": "https://issues.redhat.com/browse/TC-1713"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1721",
"url": "https://issues.redhat.com/browse/TC-1721"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1757",
"url": "https://issues.redhat.com/browse/TC-1757"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1769",
"url": "https://issues.redhat.com/browse/TC-1769"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1770",
"url": "https://issues.redhat.com/browse/TC-1770"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1799",
"url": "https://issues.redhat.com/browse/TC-1799"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1800",
"url": "https://issues.redhat.com/browse/TC-1800"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1801",
"url": "https://issues.redhat.com/browse/TC-1801"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1810",
"url": "https://issues.redhat.com/browse/TC-1810"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1815",
"url": "https://issues.redhat.com/browse/TC-1815"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1817",
"url": "https://issues.redhat.com/browse/TC-1817"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1818",
"url": "https://issues.redhat.com/browse/TC-1818"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1841",
"url": "https://issues.redhat.com/browse/TC-1841"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1842",
"url": "https://issues.redhat.com/browse/TC-1842"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1846",
"url": "https://issues.redhat.com/browse/TC-1846"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1847",
"url": "https://issues.redhat.com/browse/TC-1847"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1855",
"url": "https://issues.redhat.com/browse/TC-1855"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1857",
"url": "https://issues.redhat.com/browse/TC-1857"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9884.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0",
"tracking": {
"current_release_date": "2025-10-08T15:45:01+00:00",
"generator": {
"date": "2025-10-08T15:45:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:9884",
"initial_release_date": "2024-11-18T14:52:00+00:00",
"revision_history": [
{
"date": "2024-11-18T14:52:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:51:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-08T15:45:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-trustification-service-rhel9@sha256%3Ac1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.0-1730813392"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T14:52:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T14:52:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhba-2024:9054
Vulnerability from csaf_redhat
Published
2024-11-11 01:39
Modified
2025-10-23 23:53
Summary
Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.1 bugfix release
Notes
Topic
Red Hat Developer Hub 1.3.1 has been released.
Details
Red Hat Developer Hub (RHDH) is Red Hat's enterprise-grade, self-managed,
customizable developer portal based on Backstage.io. RHDH is supported on
OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features
of RHDH include a single pane of glass, a centralized software catalog,
self-service via golden path templates, and Tech Docs. RHDH is extensible by
plugins.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.3.1 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed,\ncustomizable developer portal based on Backstage.io. RHDH is supported on\nOpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features\nof RHDH include a single pane of glass, a centralized software catalog,\nself-service via golden path templates, and Tech Docs. RHDH is extensible by\nplugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2024:9054",
"url": "https://access.redhat.com/errata/RHBA-2024:9054"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub/1.3"
},
{
"category": "external",
"summary": "RHIDP-4343",
"url": "https://issues.redhat.com/browse/RHIDP-4343"
},
{
"category": "external",
"summary": "RHIDP-4344",
"url": "https://issues.redhat.com/browse/RHIDP-4344"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhba-2024_9054.json"
}
],
"title": "Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.1 bugfix release",
"tracking": {
"current_release_date": "2025-10-23T23:53:23+00:00",
"generator": {
"date": "2025-10-23T23:53:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHBA-2024:9054",
"initial_release_date": "2024-11-11T01:39:34+00:00",
"revision_history": [
{
"date": "2024-11-11T01:39:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-11T01:39:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-23T23:53:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.3 for RHEL 9",
"product": {
"name": "Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"product": {
"name": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"product_id": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-hub-rhel9\u0026tag=1.3-124"
}
}
},
{
"category": "product_version",
"name": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"product": {
"name": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"product_id": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-operator-bundle\u0026tag=1.3-118"
}
}
},
{
"category": "product_version",
"name": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64",
"product": {
"name": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64",
"product_id": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rhel9-operator\u0026tag=1.3-119"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
},
"product_reference": "rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64"
},
"product_reference": "rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64 as a component of Red Hat Developer Hub 1.3 for RHEL 9",
"product_id": "9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
},
"product_reference": "rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64",
"relates_to_product_reference": "9Base-RHDH-1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-11T01:39:34+00:00",
"details": "To install the Red Hat Developer Hub 1.3, follow the instructions linked from the References section.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:9054"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-11T01:39:34+00:00",
"details": "To install the Red Hat Developer Hub 1.3, follow the instructions linked from the References section.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:9054"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"known_not_affected": [
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-11T01:39:34+00:00",
"details": "To install the Red Hat Developer Hub 1.3, follow the instructions linked from the References section.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:9054"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHDH-1.3:rhdh/rhdh-hub-rhel9@sha256:9bf03585d9a90ad7ba0dd56e9210dbe099be187e9ada06b2a2ca754cefa89314_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-operator-bundle@sha256:aa2551561078f59c2ac06905bbe51601a438bd8534c5240657964d6e3b685295_amd64",
"9Base-RHDH-1.3:rhdh/rhdh-rhel9-operator@sha256:8d3e75e17444a5b5b8ffa103b7c880132b2e814245d438363f5434d5d4be1167_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2024:10186
Vulnerability from csaf_redhat
Published
2024-11-22 01:06
Modified
2025-10-31 12:42
Summary
Red Hat Security Advisory: ACS 4.5 enhancement update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes a bug fix and security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.5.5 introduces the following changes:
Bug fix:
* Fixed an issue with redirects in curl commands leading to empty files and errors in scanning. (ROX-26929)
* Scanner V4 now reindexes image upon indexer updates. (ROX-23956)
Security fixes:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains
deeply nested structures can cause a panic due to stack exhaustion
(CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* dompurify: DOMPurify vulnerable to tampering by prototype pollution
(CVE-2024-48910)
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6
addresses (CVE-2024-24790)
* cross-spawn: Regular expression denial of service (CVE-2024-21538)
For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in the
References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes a bug fix and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.5.5 introduces the following changes:\n\nBug fix:\n\n* Fixed an issue with redirects in curl commands leading to empty files and errors in scanning. (ROX-26929)\n\n* Scanner V4 now reindexes image upon indexer updates. (ROX-23956)\n\nSecurity fixes:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains\ndeeply nested structures can cause a panic due to stack exhaustion\n(CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution\n(CVE-2024-48910)\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6\naddresses (CVE-2024-24790)\n\n* cross-spawn: Regular expression denial of service (CVE-2024-21538)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, and other related information, refer to the CVE page(s) listed in the\nReferences section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10186",
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "ROX-23956",
"url": "https://issues.redhat.com/browse/ROX-23956"
},
{
"category": "external",
"summary": "ROX-26943",
"url": "https://issues.redhat.com/browse/ROX-26943"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10186.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.5 enhancement update",
"tracking": {
"current_release_date": "2025-10-31T12:42:41+00:00",
"generator": {
"date": "2025-10-31T12:42:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:10186",
"initial_release_date": "2024-11-22T01:06:56+00:00",
"revision_history": [
{
"date": "2024-11-22T01:06:56+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-22T01:06:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:42:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.5 for RHEL 8",
"product": {
"name": "RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-115: Misinterpretation of Input vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nControls such as input validation and error handling mitigate input misinterpretation risks by enforcing strict validation rules and secure error management. Error handling ensures inputs are validated against predefined formats, preventing malformed data from being misinterpreted. Techniques like strong typing, allow listing, and proper encoding reduce the likelihood of injection attacks and unintended code execution. Input validation also ensures that errors do not expose sensitive system details or cause unpredictable behavior. Secure error handling prevents information leakage through detailed error messages while preserving system stability under malformed input conditions. Together, these controls reduce the attack surface by maintaining consistent input processing and preventing exploitable system states, strengthening the overall security posture.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
rhsa-2024:10906
Vulnerability from csaf_redhat
Published
2024-12-10 01:37
Modified
2025-10-31 12:42
Summary
Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.5 security and bug fix update
Notes
Topic
The Migration Toolkit for Containers (MTC) 1.8.5 is now available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.
Security Fix(es) from Bugzilla:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)
* net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)
* go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)
* go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)
* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* express: Improper Input Handling in Express Redirects (CVE-2024-43796)
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The Migration Toolkit for Containers (MTC) 1.8.5 is now available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.\n\nSecurity Fix(es) from Bugzilla:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\n* net/http: Denial of service due to improper 100-continue handling in net/http (CVE-2024-24791)\n\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)\n\n* go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)\n\n* go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)\n\n* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n\n* express: Improper Input Handling in Express Redirects (CVE-2024-43796)\n\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10906",
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "MIG-1458",
"url": "https://issues.redhat.com/browse/MIG-1458"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10906.json"
}
],
"title": "Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.5 security and bug fix update",
"tracking": {
"current_release_date": "2025-10-31T12:42:44+00:00",
"generator": {
"date": "2025-10-31T12:42:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:10906",
"initial_release_date": "2024-12-10T01:37:19+00:00",
"revision_history": [
{
"date": "2024-12-10T01:37:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-10T01:37:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:42:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-RHMTC-1.8",
"product": {
"name": "8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhmt:1.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Migration Toolkit"
},
{
"branches": [
{
"category": "product_version",
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product_id": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-controller-rhel8\u0026tag=v1.8.5-11"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product_id": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-hook-runner-rhel8\u0026tag=v1.8.5-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product_id": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-log-reader-rhel8\u0026tag=v1.8.5-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product_id": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-must-gather-rhel8\u0026tag=v1.8.5-9"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product_id": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-openvpn-rhel8\u0026tag=v1.8.5-6"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product_id": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rhel8-operator\u0026tag=v1.8.5-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product_id": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-operator-bundle\u0026tag=v1.8.5-16"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product_id": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-registry-rhel8\u0026tag=v1.8.5-6"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product_id": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rsync-transfer-rhel8\u0026tag=v1.8.5-7"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product_id": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-ui-rhel8\u0026tag=v1.8.5-7"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8\u0026tag=v1.8.5-6"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64"
},
"product_reference": "rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64"
},
"product_reference": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64"
},
"product_reference": "rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64"
},
"product_reference": "rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64"
},
"product_reference": "rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64"
},
"product_reference": "rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64"
},
"product_reference": "rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64"
},
"product_reference": "rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64"
},
"product_reference": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
},
"product_reference": "rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-115: Misinterpretation of Input vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nControls such as input validation and error handling mitigate input misinterpretation risks by enforcing strict validation rules and secure error management. Error handling ensures inputs are validated against predefined formats, preventing malformed data from being misinterpreted. Techniques like strong typing, allow listing, and proper encoding reduce the likelihood of injection attacks and unintended code execution. Input validation also ensures that errors do not expose sensitive system details or cause unpredictable behavior. Secure error handling prevents information leakage through detailed error messages while preserving system stability under malformed input conditions. Together, these controls reduce the attack surface by maintaining consistent input processing and preventing exploitable system states, strengthening the overall security posture.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-24791",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-07-02T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go. The net/http module mishandles specific server responses from HTTP/1.1 client requests. This issue may render a connection invalid and cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/http: Denial of service due to improper 100-continue handling in net/http",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "An attacker would need to control a malicious server and induce a client to connect to it, requiring some amount of preparation outside of the attacker\u0027s control. This reduces the severity score of this flaw to Moderate.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24791"
},
{
"category": "external",
"summary": "RHBZ#2295310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24791",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24791"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24791"
},
{
"category": "external",
"summary": "https://go.dev/cl/591255",
"url": "https://go.dev/cl/591255"
},
{
"category": "external",
"summary": "https://go.dev/issue/67555",
"url": "https://go.dev/issue/67555"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ",
"url": "https://groups.google.com/g/golang-dev/c/t0rK-qHBqzY/m/6MMoAZkMAgAJ"
}
],
"release_date": "2024-07-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "net/http: Denial of service due to improper 100-continue handling in net/http"
},
{
"cve": "CVE-2024-34155",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:06.929766+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310527"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/parser package of the Golang standard library. Calling any Parse functions on Go source code containing deeply nested literals can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34155"
},
{
"category": "external",
"summary": "RHBZ#2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155"
},
{
"category": "external",
"summary": "https://go.dev/cl/611238",
"url": "https://go.dev/cl/611238"
},
{
"category": "external",
"summary": "https://go.dev/issue/69138",
"url": "https://go.dev/issue/69138"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3105",
"url": "https://pkg.go.dev/vuln/GO-2024-3105"
}
],
"release_date": "2024-09-06T21:15:11.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-34158",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2024-09-06T21:20:12.126400+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310529"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34158"
},
{
"category": "external",
"summary": "RHBZ#2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158"
},
{
"category": "external",
"summary": "https://go.dev/cl/611240",
"url": "https://go.dev/cl/611240"
},
{
"category": "external",
"summary": "https://go.dev/issue/69141",
"url": "https://go.dev/issue/69141"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3107",
"url": "https://pkg.go.dev/vuln/GO-2024-3107"
}
],
"release_date": "2024-09-06T21:15:12.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T01:37:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:4657efd532ccf0e4d945e2d212d1022877a6da0d33dead66811c097d01842319_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:567c14ac62514b8e60d2a8aaf49bd4666e0612f17ec3077a35849013cefbf8dc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:4d78ea33f02d7b0de64b16c0dd58c67fbfafac3783948250eb5361c2b0d1fbed_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:252375b7e90707ee71d68b38ec5dcbe16c61188fecc723bcf7dd72944b80a6eb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:eab006db0ded34f36609011fab5bf1f02825149d74347837cd28dd9ed3cbcccf_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:1ee51dfcf4fba81d24fed333657b241eec98d961e3e5d1549ba9d902237c5ecb_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:91a75a438ae32c7e0826c3d5aab25f2597812331b8911b040da7cb9a31a25007_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:91ec7e1765d4ee8a808e1eede50c610c37deb3e78c9932f76b5c222d9a978e4c_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:6e8e1c6c3db9ddf500d07e5f2453473e7dfe0bf0195aaa0ef11ed4c86ea58c31_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:ae3dc96aa16f80c2386daf976d0fc5a4b3501aa923342728a9d8020571adef47_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:777e10015629b4295ffd279e8e97945a25f3eae9619ce82f0238a277a529849b_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhba-2024:11265
Vulnerability from csaf_redhat
Published
2024-12-17 15:12
Modified
2025-10-23 23:53
Summary
Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.4.0 release.
Notes
Topic
Red Hat Developer Hub 1.4 has been released.
Details
Red Hat Developer Hub (RHDH) is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.4 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2024:11265",
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "external",
"summary": "https://developers.redhat.com/rhdh/overview",
"url": "https://developers.redhat.com/rhdh/overview"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh",
"url": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21538",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45815",
"url": "https://access.redhat.com/security/cve/CVE-2024-45815"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45816",
"url": "https://access.redhat.com/security/cve/CVE-2024-45816"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-46976",
"url": "https://access.redhat.com/security/cve/CVE-2024-46976"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47762",
"url": "https://access.redhat.com/security/cve/CVE-2024-47762"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhba-2024_11265.json"
}
],
"title": "Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.4.0 release.",
"tracking": {
"current_release_date": "2025-10-23T23:53:19+00:00",
"generator": {
"date": "2025-10-23T23:53:19+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHBA-2024:11265",
"initial_release_date": "2024-12-17T15:12:17+00:00",
"revision_history": [
{
"date": "2024-12-17T15:12:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-12T21:34:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-23T23:53:19+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub (RHDH) 1.4",
"product": {
"name": "Red Hat Developer Hub (RHDH) 1.4",
"product_id": "Red Hat Developer Hub (RHDH) 1.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.4::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub (RHDH)"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256%3A48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.4-1734106454"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256%3A448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.4-1734106469"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256%3A2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1.4-1734113472"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64 as a component of Red Hat Developer Hub (RHDH) 1.4",
"product_id": "Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"relates_to_product_reference": "Red Hat Developer Hub (RHDH) 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64 as a component of Red Hat Developer Hub (RHDH) 1.4",
"product_id": "Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"relates_to_product_reference": "Red Hat Developer Hub (RHDH) 1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64 as a component of Red Hat Developer Hub (RHDH) 1.4",
"product_id": "Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64",
"relates_to_product_reference": "Red Hat Developer Hub (RHDH) 1.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45815",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-09-17T21:20:06.780788+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312952"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the backstage/plugin-catalog-backend package. A malicious actor with authenticated access to a Backstage instance with the catalog backend plugin installed is able to interrupt the service using a specially crafted query to the catalog API.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "plugin-catalog-backend: prototype pollution vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45815"
},
{
"category": "external",
"summary": "RHBZ#2312952",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312952"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45815",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45815"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45815",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45815"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-3x3f-jcp3-g22j",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-3x3f-jcp3-g22j"
}
],
"release_date": "2024-09-17T21:15:12.320000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "plugin-catalog-backend: prototype pollution vulnerability"
},
{
"cve": "CVE-2024-45816",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"discovery_date": "2024-09-17T21:20:09.051855+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312953"
}
],
"notes": [
{
"category": "description",
"text": "A directory traversal vulnerability was found in the backstage/plugin-techdocs-backend package. When using the AWS S3 or GCS storage provider for TechDocs, it is possible to access content in the entire storage bucket. This can leak contents of the bucket that are not intended to be accessible, as well as bypass permission checks in Backstage.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "plugin-techdocs-backend: storage bucket directory traversal in TechDocs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45816"
},
{
"category": "external",
"summary": "RHBZ#2312953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312953"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45816"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-39v3-f278-vj3g",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-39v3-f278-vj3g"
}
],
"release_date": "2024-09-17T21:15:12.553000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "plugin-techdocs-backend: storage bucket directory traversal in TechDocs"
},
{
"cve": "CVE-2024-46976",
"cwe": {
"id": "CWE-693",
"name": "Protection Mechanism Failure"
},
"discovery_date": "2024-09-17T21:20:11.815685+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312954"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the backstage/plugin-techdocs-backend package. An attacker with control of the contents of the TechDocs storage buckets may be able to inject executable scripts in the TechDocs content that will be executed in the victim\u0027s browser when browsing documentation or navigating to an attacker provided link.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "plugin-techdocs-backend: circumvention of XSS protection in TechDocs",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-46976"
},
{
"category": "external",
"summary": "RHBZ#2312954",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312954"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-46976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46976"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-46976",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46976"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-5j94-f3mf-8685",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-5j94-f3mf-8685"
}
],
"release_date": "2024-09-17T21:15:12.763000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "plugin-techdocs-backend: circumvention of XSS protection in TechDocs"
},
{
"cve": "CVE-2024-47762",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"discovery_date": "2024-10-03T18:01:14.495619+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2316342"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the backstage/plugin-app-backend package. Configurations supplied through APP_CONFIG_* environment variables unexpectedly ignore the visibility defined in the configuration schema, potentially exposing sensitive configuration details intended to remain private or restricted to backend processes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "backstage/plugin-app-backend: Unexpected visibility of environment variable configurations in @backstage/plugin-app-backend",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47762"
},
{
"category": "external",
"summary": "RHBZ#2316342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2316342"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47762",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47762"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47762",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47762"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/commit/323e6129073c5cb4cc106a1239eaec31a129554f",
"url": "https://github.com/backstage/backstage/commit/323e6129073c5cb4cc106a1239eaec31a129554f"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-qc4v-xq2m-65wc",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-qc4v-xq2m-65wc"
}
],
"release_date": "2024-10-03T17:14:34.529000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-17T15:12:17+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2024:11265"
},
{
"category": "workaround",
"details": "Avoid supplying secrets using the APP_CONFIG_* configuration pattern. Consider alternative methods such as the environment variable substitution.\n\nSee this link for more information about environment variable substitution: https://backstage.io/docs/conf/writing/#environment-variable-substitution",
"product_ids": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:2981d2470951ea1e26eb968aefc39ab48ab7d9634a520cf2bbd8c5fef313db15_amd64",
"Red Hat Developer Hub (RHDH) 1.4:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:448fba0f5f87dc6508b96503fbb794b5b67ed4dea3c95f42d5accdfe1c77e721_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "backstage/plugin-app-backend: Unexpected visibility of environment variable configurations in @backstage/plugin-app-backend"
}
]
}
rhsa-2024_10186
Vulnerability from csaf_redhat
Published
2024-11-22 01:06
Modified
2025-01-06 21:37
Summary
Red Hat Security Advisory: ACS 4.5 enhancement update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes a bug fix and security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.5.5 introduces the following changes:
Bug fix:
* Fixed an issue with redirects in curl commands leading to empty files and errors in scanning. (ROX-26929)
* Scanner V4 now reindexes image upon indexer updates. (ROX-23956)
Security fixes:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains
deeply nested structures can cause a panic due to stack exhaustion
(CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* dompurify: DOMPurify vulnerable to tampering by prototype pollution
(CVE-2024-48910)
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6
addresses (CVE-2024-24790)
* cross-spawn: Regular expression denial of service (CVE-2024-21538)
For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in the
References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes a bug fix and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.5.5 introduces the following changes:\n\nBug fix:\n\n* Fixed an issue with redirects in curl commands leading to empty files and errors in scanning. (ROX-26929)\n\n* Scanner V4 now reindexes image upon indexer updates. (ROX-23956)\n\nSecurity fixes:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains\ndeeply nested structures can cause a panic due to stack exhaustion\n(CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution\n(CVE-2024-48910)\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6\naddresses (CVE-2024-24790)\n\n* cross-spawn: Regular expression denial of service (CVE-2024-21538)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, and other related information, refer to the CVE page(s) listed in the\nReferences section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10186",
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "ROX-23956",
"url": "https://issues.redhat.com/browse/ROX-23956"
},
{
"category": "external",
"summary": "ROX-26943",
"url": "https://issues.redhat.com/browse/ROX-26943"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10186.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.5 enhancement update",
"tracking": {
"current_release_date": "2025-01-06T21:37:15+00:00",
"generator": {
"date": "2025-01-06T21:37:15+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:10186",
"initial_release_date": "2024-11-22T01:06:56+00:00",
"revision_history": [
{
"date": "2024-11-22T01:06:56+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-22T01:06:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T21:37:15+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.5 for RHEL 8",
"product": {
"name": "RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
rhsa-2024:9583
Vulnerability from csaf_redhat
Published
2024-11-13 18:00
Modified
2025-10-31 12:42
Summary
Red Hat Security Advisory: ACS 4.4 enhancement update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security
(RHACS). The updated image includes a bug fix and security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.4.6 introduces the following changes:
Bug fix:
* Fixed an issue where you could not view detailed scan results for certain images in RHACS because the page redirected to an error after a brief display. (ROX-24326)
Security fixes:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910)
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS). The updated image includes a bug fix and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.4.6 introduces the following changes:\n\nBug fix:\n\n* Fixed an issue where you could not view detailed scan results for certain images in RHACS because the page redirected to an error after a brief display. (ROX-24326)\n\nSecurity fixes:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910)\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9583",
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html",
"url": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "ROX-26880",
"url": "https://issues.redhat.com/browse/ROX-26880"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9583.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.4 enhancement update",
"tracking": {
"current_release_date": "2025-10-31T12:42:39+00:00",
"generator": {
"date": "2025-10-31T12:42:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:9583",
"initial_release_date": "2024-11-13T18:00:45+00:00",
"revision_history": [
{
"date": "2024-11-13T18:00:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-13T18:00:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:42:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.4 for RHEL 8",
"product": {
"name": "RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-115: Misinterpretation of Input vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nControls such as input validation and error handling mitigate input misinterpretation risks by enforcing strict validation rules and secure error management. Error handling ensures inputs are validated against predefined formats, preventing malformed data from being misinterpreted. Techniques like strong typing, allow listing, and proper encoding reduce the likelihood of injection attacks and unintended code execution. Input validation also ensures that errors do not expose sensitive system details or cause unpredictable behavior. Secure error handling prevents information leakage through detailed error messages while preserving system stability under malformed input conditions. Together, these controls reduce the attack surface by maintaining consistent input processing and preventing exploitable system states, strengthening the overall security posture.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
rhsa-2025:8544
Vulnerability from csaf_redhat
Published
2025-06-04 20:11
Modified
2025-10-31 12:53
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.15.14 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.15.14 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8544",
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "DFBUGS-1034",
"url": "https://issues.redhat.com/browse/DFBUGS-1034"
},
{
"category": "external",
"summary": "DFBUGS-2604",
"url": "https://issues.redhat.com/browse/DFBUGS-2604"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8544.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update",
"tracking": {
"current_release_date": "2025-10-31T12:53:47+00:00",
"generator": {
"date": "2025-10-31T12:53:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:8544",
"initial_release_date": "2025-06-04T20:11:19+00:00",
"revision_history": [
{
"date": "2025-06-04T20:11:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-06-04T20:11:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:53:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.15 for RHEL 9",
"product": {
"name": "RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.15::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.15.14-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.15.14-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.15.14-6"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.15.14-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.15.14-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.15.14-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.15.14-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64 as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le as a component of RHODF 4.15 for RHEL 9",
"product_id": "9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-29180",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270863"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer\u0027s machine. The lack of normalization before calling the middleware also allows the attacker to perform path traversal attacks on the target environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack-dev-middleware: lack of URL validation may lead to file leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in webpack-dev represents a important security issue due to its potential to expose sensitive files and compromise developer machines. By failing to validate URLs and normalize paths effectively, the middleware allows attackers to craft malicious requests that can retrieve arbitrary local files or perform unauthorized path traversal. This could lead to unauthorized access to confidential information, including source code, configuration files, and even system-level files. Given the widespread use of webpack-dev-middleware in web development environments, addressing this vulnerability promptly is important to prevent serious data breaches and protect the integrity of development processes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "RHBZ#2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6",
"url": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "webpack-dev-middleware: lack of URL validation may lead to file leak"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
},
{
"acknowledgments": [
{
"names": [
"jub0bs"
]
}
],
"cve": "CVE-2025-22868",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-02-26T04:00:44.350024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2348366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `golang.org/x/oauth2/jws` package in the token parsing component. This vulnerability is made possible because of the use of `strings.Split(token, \".\")` to split JWT tokens, which can lead to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. An attacker could exploit this functionality by sending numerous malformed tokens and can trigger memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "RHBZ#2348366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2348366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-22868"
},
{
"category": "external",
"summary": "https://go.dev/cl/652155",
"url": "https://go.dev/cl/652155"
},
{
"category": "external",
"summary": "https://go.dev/issue/71490",
"url": "https://go.dev/issue/71490"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3488",
"url": "https://pkg.go.dev/vuln/GO-2025-3488"
}
],
"release_date": "2025-02-26T03:07:49.012000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, it is recommended to pre-validate any payloads passed to `go-jose` to check that they do not contain an excessive amount of `.` characters.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2/jws"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T20:11:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8544"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:21b8cf141ecf150fc0810a008c8e38e370ba688c3cd6f3457c3e6fc3ee52b4d6_ppc64le",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:22d3683f9aeda98b9ffc78e56e4fda94c94f2b238fdbb4571544e1389c8c780c_s390x",
"9Base-RHODF-4.15:odf4/cephcsi-rhel9@sha256:3c7347793cd8cd257f502c773f9160c9a0206b22b02cf6b38fcda0957df71195_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:4bba4ccd15bcac9199e2dd8e303392b4fd0996a4d6b985b542a50e7d6b2969f7_amd64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:6dad7882970e02ae4305a5b67b2baac56010c752628a69b45758c6ce290b0221_arm64",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:a56aca673c704e876691dd83498943f3f8db6c0253de88bb2c0bf548b0fa7d38_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-core-rhel9@sha256:c8c4143f46151064487a1e412fe36686392e114e49fd1bb17f9c625fa4b97754_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:726df27ad9d432f1fa7f6c75266e6f562fe629284fe1511f94d2a4a38c6c1645_ppc64le",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:7aeae4a434a1db77c1461d904227075a3d9174cea6ebcebcb2cd6d15c6ee36ce_s390x",
"9Base-RHODF-4.15:odf4/mcg-operator-bundle@sha256:d5bc11198e1534cbd9ceab7ede95208541199dafa509aceea57ceec565be4263_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:16ce19df455cdabaf4ea4b46d04bd5545fd48afb7461ca0a1eae93b397a93e7c_arm64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:51c3b61adbaa32a71ea88fe696d244cf7211d3f0f4338c04409cf034c0d3e648_s390x",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:542533139948377f7f070eefb62c1fe385a86b754f506308535790787cf1d279_amd64",
"9Base-RHODF-4.15:odf4/mcg-rhel9-operator@sha256:766a960eacb7eda308dc93bb19b8562a732dc07a6af6e444c728d215f61329d1_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:1882fa5ee99205e6adccf2bb748a8f7556ce24bb0984945ff873ffa28bb8e6cc_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:2ddceee0eb1df73ed31f43c255ff2a0909182cc65ffb8d5b3a8c12b799353308_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-console-rhel9@sha256:991cf5cf098a76ded35e375b0d6cb18e7031ccde28b15293c0d180d66161dee9_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:86e618756adc5c11c7d6c93ac4ef98254573f33974bd40bd9437047bdaaab064_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:88ec58a7da882000b8e6588043889cc04f12cb2ddc22de9ad56beba038265446_amd64",
"9Base-RHODF-4.15:odf4/ocs-client-operator-bundle@sha256:c27dd90be2061ff149347f708dee2e98a9253e9c354e987abe956ed1fe4c9506_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:23eaa0055fe21575f001b289b218528299be0758bbc81dc7c96ad8881e575c93_arm64",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:4119ffdae2af4343e69647c8832ad7059f050f25586ebbaf9f4f117c711e32a4_s390x",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:5987d7027a35dc683f5f12111dc0ade483019ebf4879244746c2aef783930fa9_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-client-rhel9-operator@sha256:8a2815f90acc846be5cb989be5fac10125d820a927d21c8a26e0982d728bbe24_amd64",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:0b21eff1f4effc630145bb027c228d08fa46a685f87d8dae4a2f7a10b73a9950_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:5a5a0aaba3369479e18693adf7cc7acb1cbb65c6dc170db882ea244aa33ed52f_s390x",
"9Base-RHODF-4.15:odf4/ocs-metrics-exporter-rhel9@sha256:e1544c0104c8383b15bf274d5d308bb8b26cf3f7bab693a729f005697852276f_amd64",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:30acb6b8840fd5e433441507c00d215a9d6ed2f02a39b0891392fb9eefe375bf_s390x",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:4c711bfecd9bdd055508a8ee96b3215d808a82d18e69ef221bec3a3734567751_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-operator-bundle@sha256:b8d583770812c2ffc6f35308e5318ef1e6b1691c02063a862fdd1f6d24ed848f_amd64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:1f178dec0859af50f07223570bb6c593bc05b4714106db7be7e4d93b543bb680_arm64",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2877b4ca6ce26d87d4d70d81b3213ad35a1e08d6db082c424584d2178ab87f1e_ppc64le",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:2f946ab9bfbc108a3211f03d0779a37534d282ce280732e884a33230a910f1c7_s390x",
"9Base-RHODF-4.15:odf4/ocs-rhel9-operator@sha256:f4bf09263bebbb3fa4848e644d677ad554a62108cd13795336b45824b6465cdb_amd64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:1428888e36d590f31719c289900b934d4c74dbaad92b2eb9cf115a0d52736be9_arm64",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:59f64f89532b858cd92a6bf7ab85a960afcbf6ad3b5d7914d14498b05414f58d_s390x",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ed8d6fdcce3974d7e63ebc11f4d65630e43d5cd8e4ac0913d7e133312f38a955_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cli-rhel9@sha256:ff7bafa9dec6e3cf0298dac277c823a89daa123a6fbf2c1a000c37692f9c9427_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:0c97fb4f66806d76d077f7a98740e48c4bf2d41c49a063f26608844e18dcd4e8_ppc64le",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:6bd03505d295a773007151ab44733030d9b571f3370f4da8888f2bc746cd0622_amd64",
"9Base-RHODF-4.15:odf4/odf-console-rhel9@sha256:9f74cbf964d3b30b70a84c17fbc0a90f8a897bcf6edfa16f9628a68c2302ee4a_s390x",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:315f9b3e5e98689a24da2e1ba8a95c24bbdf8b982288204a2ca0192a66e62194_amd64",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:4f3e899a1bf0b9a44dff11747a238d418995fb64014e7f5c3d7d59718071db1d_ppc64le",
"9Base-RHODF-4.15:odf4/odf-cosi-sidecar-rhel9@sha256:b71fe1ca49135313acd474aa08fabe8f8ca06e21179c4d28c73f198788fa8f73_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:14a4d0b508924107d9a0032953beab7d852f39f2e8519a6c7b44c8c5b1b12402_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:40e7d25cb4a037e7e857ab8dd6b1bdb70d55166b6bdf4e541258d0acacf03923_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-operator-bundle@sha256:ac520c9d7f87c9a4b38c2aa74abea553c92de657ef2b2327dcc363db75c38ceb_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:250a4f15ad6909c146182c17a56428d1872ce1e36c5d253e6e7e2dde691a46c6_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:301b4a210fae01b67b48ab51c5aca6d86925f9d6bc1d1da918d23af3bb247be5_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:67b18a7d7dde56f313d29f7a06eabc0e102c38a6433ae742e7639678d34c1de1_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-rhel9-operator@sha256:e5cd342bed146c8b08d20da7447274f9ba73e1b045177750b6246ad808eb4d32_s390x",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:476ae2f48160c9cd9aa87f994b27e248aeb75b9ae73cfa878ff33ea92d943e64_amd64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:8eb437d871ba4ca8bdb084ed45999d3659b51948fe3fd66cc7f926cef9355a1b_ppc64le",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:af8c9287053cffb1dc7e44b8f756ae4caa79d0e79823123d9aa23b13ad5a3807_arm64",
"9Base-RHODF-4.15:odf4/odf-csi-addons-sidecar-rhel9@sha256:f30fa2308b93c0b15bbb0ddffe4947ec13a7166b16f8588a9a0f21d3655fd992_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:3cb02185bcfb8f51b014d03cd8c67f056d3207f7a219f31f7c461b3ae7d972ea_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4839a33ec8498639110f48ee610b969d394689d711ff97bb94ec647e15122d1b_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-console-rhel9@sha256:4d6bf475732731602198de12f9280baeea1dd8c413187d89faa69bdc0b625fd1_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:1f69a5e3db2bece304ad0ec30b4e322fe6fb00f014e209269f21a6f5ee9fd5bd_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:e44b46e633f81c7e5bb86d479b458bb6a08432aa9d3a8388f609477263ff40a2_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-operator-bundle@sha256:fa3423cfdad00daadbd747be24a08da30b258abaffded92cb6707f1a547a01bf_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:17a689023ae55ca9862ea26aba58df9943a4eb8dcd39c1a7b089f8039c40a796_ppc64le",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:27bf98ba209ef8c833906802210105bf4968d2f51f19ebe218237fdf0e693a1b_s390x",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:7e962c217a8aeaf7b376f5bd566a1ed039233989b17575d8017a62437433db32_amd64",
"9Base-RHODF-4.15:odf4/odf-multicluster-rhel9-operator@sha256:afb38cf456c0cd89d79cef4aa32309d0ec9a9ab1509e9d0bb765f2cdd45e153d_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:1d7d22b0924ac4ee67f23499785df33630d1388b7e4460d581032707a3b16b80_ppc64le",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:44292b6abb12a9998c77d895fa93ea46e9a5078a105933606c0bdba0e20bb160_arm64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:73f3fc4c68057dc1adcd39409dc8599248fc36e3e8f6fc77008a4474eba08d06_amd64",
"9Base-RHODF-4.15:odf4/odf-must-gather-rhel9@sha256:991d0c0f35abf8cd54f89639f0328f12eb2caaa94c7df7ebe099ea53ef4e983a_s390x",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:1b9fd8d25a9243cd891435c785809492eb8288b889c96508826e0a2718d3f610_amd64",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:57013a61d4644f9188e7c59b002a0e2c26a730bff081713ae9b658ea52664022_ppc64le",
"9Base-RHODF-4.15:odf4/odf-operator-bundle@sha256:b8829d392cf76da0b89a21d2d7b11c10be5f8e44f4d8a01c4fc35fd5b2f48ad3_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:03468974f18be943dba537991a3aa0db1fc665776f986012685c0c09ef0a7ab3_ppc64le",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:72c8a1d9078ef76c43a86ce8f5d5507a7f123a0718b34f2a0dd2baf515320fcb_s390x",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:73ee58162ccee1512d1603a1cb1c0833694d5a8e2441062c51bc9ddc4350c2df_amd64",
"9Base-RHODF-4.15:odf4/odf-rhel9-operator@sha256:aedc8ff3c78050768b31f155c8e8deae30d24c5c41436ce9922aa18b2cc6ccfd_arm64",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:088ff30f99f9087586b4d2eae59d15606e51b497b3bdbb08d860aa87c248d552_ppc64le",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:8ac95c2369b8b914d4782819f38b02c651a678727a000405f3923e03f4552b6c_s390x",
"9Base-RHODF-4.15:odf4/odr-cluster-operator-bundle@sha256:b6c9efe26ffe767e4f593cb0529d75ae53dde35748e90874e285b426702bb6ea_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:36a9de5adc07365f5493bd5d97582b42f2c4f03e2aa7931247c69c1a9b7184f3_amd64",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:85f961a9eb4832dd5e74e4abb864d57bb56355f24f806dee2026e992c01b1e92_ppc64le",
"9Base-RHODF-4.15:odf4/odr-hub-operator-bundle@sha256:efafbcd837deb9d0e61699380fa3cc7f2089ea32498d2197ffe6facf9f2b67f2_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:154a478191dd82e195c6bf68659ebeb54675d8d89e6e0d1ae920d45c00cba38d_s390x",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:37e4c96774444d44094174d61cdbcd6af117dfbcecc7e064c505ae93c4520d86_ppc64le",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:ceeea4fa800c67831ad2fc928cc1b1d1c217013012e1b74109fb76e63e2c72f8_amd64",
"9Base-RHODF-4.15:odf4/odr-rhel9-operator@sha256:cfc7dbe7046457f7969368c7dc2d18db5d8b1dc04588e3378cdfe7711c077d45_arm64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:1900ab3d607d94f33ba79546772a3cda4c23c6a8a985fe88b5131a9b56656621_amd64",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:815f8ddedee55c58af96f936ebbe4d252de77e73df19c9784db14280ffce748b_s390x",
"9Base-RHODF-4.15:odf4/rook-ceph-rhel9-operator@sha256:d8fc74f4bb786e247250b0bbc103d3de3e6090531ca68fbdea4034926f78a760_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
rhsa-2024_9884
Vulnerability from csaf_redhat
Published
2024-11-18 14:52
Modified
2025-01-06 19:03
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.0
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.0",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9884",
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1713",
"url": "https://issues.redhat.com/browse/TC-1713"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1721",
"url": "https://issues.redhat.com/browse/TC-1721"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1757",
"url": "https://issues.redhat.com/browse/TC-1757"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1769",
"url": "https://issues.redhat.com/browse/TC-1769"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1770",
"url": "https://issues.redhat.com/browse/TC-1770"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1799",
"url": "https://issues.redhat.com/browse/TC-1799"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1800",
"url": "https://issues.redhat.com/browse/TC-1800"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1801",
"url": "https://issues.redhat.com/browse/TC-1801"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1810",
"url": "https://issues.redhat.com/browse/TC-1810"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1815",
"url": "https://issues.redhat.com/browse/TC-1815"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1817",
"url": "https://issues.redhat.com/browse/TC-1817"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1818",
"url": "https://issues.redhat.com/browse/TC-1818"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1841",
"url": "https://issues.redhat.com/browse/TC-1841"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1842",
"url": "https://issues.redhat.com/browse/TC-1842"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1846",
"url": "https://issues.redhat.com/browse/TC-1846"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1847",
"url": "https://issues.redhat.com/browse/TC-1847"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1855",
"url": "https://issues.redhat.com/browse/TC-1855"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1857",
"url": "https://issues.redhat.com/browse/TC-1857"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9884.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0",
"tracking": {
"current_release_date": "2025-01-06T19:03:56+00:00",
"generator": {
"date": "2025-01-06T19:03:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:9884",
"initial_release_date": "2024-11-18T14:52:00+00:00",
"revision_history": [
{
"date": "2024-11-18T14:52:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-18T14:52:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T19:03:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-trustification-service-rhel9@sha256%3Ac1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.0-1730813392"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T14:52:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T14:52:00+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9@sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
RHSA-2024:10917
Vulnerability from csaf_redhat
Published
2024-12-10 11:04
Modified
2025-10-23 23:53
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10917",
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43796",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43799",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43800",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45811",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45812",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47068",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10917.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-10-23T23:53:36+00:00",
"generator": {
"date": "2025-10-23T23:53:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:10917",
"initial_release_date": "2024-12-10T11:04:35+00:00",
"revision_history": [
{
"date": "2024-12-10T11:04:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:51:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-23T23:53:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3Ae65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Afdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Abf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Aaebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Af454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Af6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
rhsa-2024_7725
Vulnerability from csaf_redhat
Published
2024-10-07 09:24
Modified
2025-01-06 21:07
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.5
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.5.5
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule
(CVE-2024-43788)
* envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode (CVE-2024-23326)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* envoy: Brotli decompressor infinite loop (CVE-2024-32976)
* envoy: abnormal termination when using auto_sni with authority header longer
than 255 characters (CVE-2024-32475)
* envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood (CVE-2024-30255)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.5.5\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a\ndetailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule\n(CVE-2024-43788)\n* envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode (CVE-2024-23326)\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* envoy: Brotli decompressor infinite loop (CVE-2024-32976)\n* envoy: abnormal termination when using auto_sni with authority header longer\nthan 255 characters (CVE-2024-32475)\n* envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood (CVE-2024-30255)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7725",
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2259228",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259228"
},
{
"category": "external",
"summary": "2272986",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272986"
},
{
"category": "external",
"summary": "2276149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276149"
},
{
"category": "external",
"summary": "2283145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283145"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7725.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.5",
"tracking": {
"current_release_date": "2025-01-06T21:07:01+00:00",
"generator": {
"date": "2025-01-06T21:07:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:7725",
"initial_release_date": "2024-10-07T09:24:53+00:00",
"revision_history": [
{
"date": "2024-10-07T09:24:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-07T09:24:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T21:07:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.5 for RHEL 8",
"product": {
"name": "RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-23326",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2024-01-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2259228"
}
],
"notes": [
{
"category": "description",
"text": "A possible request smuggling vulnerability exists through Envoy. This issue occurs if a server can be tricked into adding an upgrade header into a response.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-23326"
},
{
"category": "external",
"summary": "RHBZ#2259228",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259228"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-23326",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23326"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-23326",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23326"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-vcf8-7238-v74c",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-vcf8-7238-v74c"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode"
},
{
"acknowledgments": [
{
"names": [
"Bartek Nowotarski"
],
"organization": "nowotarski.info"
}
],
"cve": "CVE-2024-30255",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2024-04-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2272986"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in how Envoy Proxy implements the HTTP/2 codec. There are insufficient limitations placed on the amount of CONTINUATION frames that can be sent within a single stream. This issue could allow an unauthenticated remote attacker to send packets to vulnerable servers, which could use up compute resources to cause a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates the security impact of this vulnerability as Moderate, in alignment with upstream Envoy. The worst case scenario is excessive CPU utilization causing a denial of service. Once an attack has ended, the system should return to normal operations on its own.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-30255"
},
{
"category": "external",
"summary": "RHBZ#2272986",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272986"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-30255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30255"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-30255",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-30255"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-j654-3ccm-vfmm",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-j654-3ccm-vfmm"
},
{
"category": "external",
"summary": "https://nowotarski.info/http2-continuation-flood/",
"url": "https://nowotarski.info/http2-continuation-flood/"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/421644",
"url": "https://www.kb.cert.org/vuls/id/421644"
}
],
"release_date": "2024-04-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood"
},
{
"cve": "CVE-2024-32475",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2024-04-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276149"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy, a cloud-native, open source edge and service proxy. When an upstream TLS cluster is used with \"auto_sni\" enabled, a request containing a \"host/:authority\" header longer than 255 characters triggers an abnormal termination of the Envoy process, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: abnormal termination when using auto_sni with authority header longer than 255 characters",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32475"
},
{
"category": "external",
"summary": "RHBZ#2276149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32475",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32475"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/commit/b47fc6648d7c2dfe0093a601d44cb704b7bad382",
"url": "https://github.com/envoyproxy/envoy/commit/b47fc6648d7c2dfe0093a601d44cb704b7bad382"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-3mh5-6q8v-25wj",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-3mh5-6q8v-25wj"
}
],
"release_date": "2024-04-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "envoy: abnormal termination when using auto_sni with authority header longer than 255 characters"
},
{
"cve": "CVE-2024-32976",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-05-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2283145"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy\u0027s Brotli decompressor. This flaw allows a remote, unauthenticated attacker to trigger an infinite loop, causing a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Brotli decompressor infinite loop",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32976"
},
{
"category": "external",
"summary": "RHBZ#2283145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32976"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32976",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32976"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-7wp5-c2vq-4f8m",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-7wp5-c2vq-4f8m"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "envoy: Brotli decompressor infinite loop"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"acknowledgments": [
{
"names": [
"Mike Whale"
]
},
{
"names": [
"James Force"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2024-45806",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2024-09-20T00:40:20.976812+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313683"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Envoy that allows external clients to manipulate Envoy headers, potentially leading to unauthorized access or other malicious actions within the mesh. This issue arises due to Envoy\u0027s default configuration of internal trust boundaries, which considers all RFC1918 private address ranges as internal. The default behavior for handling internal addresses in Envoy has been changed. Previously, RFC1918 IP addresses were automatically considered internal, even if the internal_address_config was empty. The default configuration of Envoy will continue to trust internal addresses while in this release and it will not trust them by default in next release. If you have tooling such as probes on your private network which need to be treated as trusted such as changing arbitrary x-envoy headers, please explicitly include those addresses or CIDR ranges into `internal_address_config`. Successful exploitation could allow attackers to bypass security controls, access sensitive data, or disrupt services within the mesh, like Istio.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Potential to manipulate `x-envoy` headers from external sources",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat\u0027s CVSS score and impact are specific to our product and may not match those of upstream. This is due to how envoy is configured and used within our OpenShift Service Mesh product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45806"
},
{
"category": "external",
"summary": "RHBZ#2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45806"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf"
}
],
"release_date": "2024-09-20T00:15:02.293000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by configuring envoy to treat all IPs as external. This is done by setting the internal_address_config range for envoy to `0.0.0.0/32`.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Potential to manipulate `x-envoy` headers from external sources"
}
]
}
RHSA-2024:10186
Vulnerability from csaf_redhat
Published
2024-11-22 01:06
Modified
2025-10-31 12:42
Summary
Red Hat Security Advisory: ACS 4.5 enhancement update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes a bug fix and security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.5.5 introduces the following changes:
Bug fix:
* Fixed an issue with redirects in curl commands leading to empty files and errors in scanning. (ROX-26929)
* Scanner V4 now reindexes image upon indexer updates. (ROX-23956)
Security fixes:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains
deeply nested structures can cause a panic due to stack exhaustion
(CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* dompurify: DOMPurify vulnerable to tampering by prototype pollution
(CVE-2024-48910)
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6
addresses (CVE-2024-24790)
* cross-spawn: Regular expression denial of service (CVE-2024-21538)
For more details about the security issue(s), including the impact, a CVSS
score, and other related information, refer to the CVE page(s) listed in the
References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes a bug fix and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.5.5 introduces the following changes:\n\nBug fix:\n\n* Fixed an issue with redirects in curl commands leading to empty files and errors in scanning. (ROX-26929)\n\n* Scanner V4 now reindexes image upon indexer updates. (ROX-23956)\n\nSecurity fixes:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains\ndeeply nested structures can cause a panic due to stack exhaustion\n(CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution\n(CVE-2024-48910)\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6\naddresses (CVE-2024-24790)\n\n* cross-spawn: Regular expression denial of service (CVE-2024-21538)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, and other related information, refer to the CVE page(s) listed in the\nReferences section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10186",
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "ROX-23956",
"url": "https://issues.redhat.com/browse/ROX-23956"
},
{
"category": "external",
"summary": "ROX-26943",
"url": "https://issues.redhat.com/browse/ROX-26943"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10186.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.5 enhancement update",
"tracking": {
"current_release_date": "2025-10-31T12:42:41+00:00",
"generator": {
"date": "2025-10-31T12:42:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:10186",
"initial_release_date": "2024-11-22T01:06:56+00:00",
"revision_history": [
{
"date": "2024-11-22T01:06:56+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-22T01:06:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:42:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.5 for RHEL 8",
"product": {
"name": "RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.5.5-3"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.5.5-4"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.5.5-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64 as a component of RHACS 4.5 for RHEL 8",
"product_id": "8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-115: Misinterpretation of Input vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nControls such as input validation and error handling mitigate input misinterpretation risks by enforcing strict validation rules and secure error management. Error handling ensures inputs are validated against predefined formats, preventing malformed data from being misinterpreted. Techniques like strong typing, allow listing, and proper encoding reduce the likelihood of injection attacks and unintended code execution. Input validation also ensures that errors do not expose sensitive system details or cause unpredictable behavior. Secure error handling prevents information leakage through detailed error messages while preserving system stability under malformed input conditions. Together, these controls reduce the attack surface by maintaining consistent input processing and preventing exploitable system states, strengthening the overall security posture.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-22T01:06:56+00:00",
"details": "If you are using an earlier version of RHACS 4.5, you are advised to upgrade to this patch release 4.5.5.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:79fc46d20cd3787ee5129832c5241ce33484fd64ce00dd8f3873f497c355a3f5_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9ecbf4c82ae5adbe31e667a90d8f2373b241b0d9262d23a1d1194b79307cd750_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-central-db-rhel8@sha256:a7bc7b1b31cdce51d2b5edd96290401eea9df86098bcad167947934e7ba624a1_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:2734e59b4f5115595fb286a8e63ddfa735d918e2d40b9a76702704e21fbe0581_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:6347c6cdd000ec7f9f76f171313de70bd210b26ef2b575306ef7c9dd6f1dd614_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-rhel8@sha256:b7d78346ed114c2259a4318df15fdf825226f1a67c55f6cfb2497616fbd3c667_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:22ebd5953ed18868b378c0aaf3f15184b275ba160c371e831192787dde892b89_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:519f9cbede8adc5e659c01c48a9e73d4c71045b95ebba68a079712305525306c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:d605988258e3c3dba21c3acaec5fff23863d55d42fbd70ee0cf32d3914e83cad_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:18074a936a8e98219d23a1396deaf43329cad464da8830ab739af32f1f339de9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:2a2042c482bc973f5c7f3d0b2269c26fef9091919d615e6204f437af71fc97d2_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-main-rhel8@sha256:e5c6287683f1a41971bd3b0eb43281eea17e7dce287ea4298e08b062ee7cbe2a_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a846783fa12efc4f8f9fb71c6a07b0a0e3d35833f00a437c0e574300f5c0eb44_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:a9d8e784d1518403036a2bdf69ae87d1dada4581c6b233764c4e6ab97ad155ca_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-operator-bundle@sha256:b262749b36483ac23f7e9311a410b4e1bfb3455074e189d2cd4e88570c953803_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:23fe140d4053fccc34d5a45424272a6e8541c2c1c555310fba8c0b72d631ae8e_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:3f623ea920f59e62daca5a72e3989fbb661d15dadcc260ad8c337f95d3ba0fe9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-rhel8-operator@sha256:defdc09b5b0c215612f77e03cacaf51af89dbc12cde45b794a98ee59f903b1cf_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:1b8ccd467895c572aaf16679912f94b098349b8cd02094aedcd4d15e8160d496_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:64f27e29c5669628d29ffd3c1a1afeb3998537396591edb4427cab467fe992a0_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:f3567a4e068a1d57a8a662fb3bd991f43e01a1b7591667ef9abea9d3af67e0ca_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4a69203931016c786835d129e57ef914d848fbe64f656b368cde952f56ee61dd_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:74515973a5ba749782d896b03ee18924e0ab4072ccd15c79b6055717cbdcfbc7_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9649c0c7c428e08d4dcbe00ebc0f3335d9fb260a9ec652e2d51d787896648097_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:569e117b6bb2b70e98b72fcba7e3e0a2beeb208dbe262bc0f6a90c6564c26003_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c81b3cb945aebcaf5e8311d45ca2b9e8680d27ac350dcad3cb9f9472af80a0fa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f770fe7f346d3815325020fcfc4d79988eee85970cd2efa5666ffa024cfa2dcf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:2873555154a7e86d0d50ab04530f7dac31db601368e42da693306c493ac75836_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:650c3b298aa0a161a5005725e97b1ea9d73bea90ded7a917be241f8f6fce7ef3_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-rhel8@sha256:67b04d8f3ee93c00399d90fce995c61bdec2d8ad8f5429f51b6a3fcaf5d837ff_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:1ea83a89d29664ada45cec629c40969ff84086f9a9550e5d347615a946bf1f5c_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:886e59b45539b1a754f13ab65c000923ddf4dd47cc4b3f1a5508e70ba2fdeeaa_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:cef5d878b1598b58db0d0f3f4bd4be7f3616ab5e586b3cec33dd8b855a3b699d_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:7aa40436ac01560d67b9898094918760f71d61ed274bb07892cd4dd76c789993_amd64",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:9debaa9e0953cb60e9d7e189d5feda503d87208dc107acf5430840cfc93df0de_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:defdb3ac5f37c7c98762ecf061577b5a41a2fa547318445d23981d4eacf3c5ba_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:40f42baadbbba89fabb1e368082218b6a489cf50379428ac178bfa8f0637becf_s390x",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d4a3278bb2f1ec87b3075522ce9e655c6c325d2e00dc630d2bf2958021315ff9_ppc64le",
"8Base-RHACS-4.5:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:f47593313f447d4d7d3b0921056b877000da7f43efafd4f009d73714c723ebe5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
rhsa-2024_8676
Vulnerability from csaf_redhat
Published
2024-10-30 14:25
Modified
2025-01-06 19:47
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.0 Security, Enhancement, & Bug Fix Update
Notes
Topic
Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.17.0 on Red Hat Enterprise Linux 9.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.
These updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:
https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/4.17_release_notes/index
All Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.17.0 on Red Hat Enterprise Linux 9.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.\n\nThese updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/4.17_release_notes/index\n\nAll Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8676",
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2059669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2059669"
},
{
"category": "external",
"summary": "2190161",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2190161"
},
{
"category": "external",
"summary": "2219310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219310"
},
{
"category": "external",
"summary": "2241329",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241329"
},
{
"category": "external",
"summary": "2245068",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245068"
},
{
"category": "external",
"summary": "2250364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250364"
},
{
"category": "external",
"summary": "2253013",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253013"
},
{
"category": "external",
"summary": "2257271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257271"
},
{
"category": "external",
"summary": "2259668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259668"
},
{
"category": "external",
"summary": "2262777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262777"
},
{
"category": "external",
"summary": "2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "2271773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271773"
},
{
"category": "external",
"summary": "2272597",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272597"
},
{
"category": "external",
"summary": "2275225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275225"
},
{
"category": "external",
"summary": "2275965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275965"
},
{
"category": "external",
"summary": "2276393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276393"
},
{
"category": "external",
"summary": "2276672",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276672"
},
{
"category": "external",
"summary": "2279751",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279751"
},
{
"category": "external",
"summary": "2279876",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279876"
},
{
"category": "external",
"summary": "2280308",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280308"
},
{
"category": "external",
"summary": "2280608",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280608"
},
{
"category": "external",
"summary": "2280637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280637"
},
{
"category": "external",
"summary": "2283994",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283994"
},
{
"category": "external",
"summary": "2292435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292435"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2294234",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294234"
},
{
"category": "external",
"summary": "2294723",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294723"
},
{
"category": "external",
"summary": "2297265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297265"
},
{
"category": "external",
"summary": "2297295",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297295"
},
{
"category": "external",
"summary": "2297447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297447"
},
{
"category": "external",
"summary": "2297454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297454"
},
{
"category": "external",
"summary": "2299630",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299630"
},
{
"category": "external",
"summary": "2299639",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299639"
},
{
"category": "external",
"summary": "2300021",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300021"
},
{
"category": "external",
"summary": "2300312",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300312"
},
{
"category": "external",
"summary": "2300331",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300331"
},
{
"category": "external",
"summary": "2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "2301889",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301889"
},
{
"category": "external",
"summary": "2302201",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302201"
},
{
"category": "external",
"summary": "2302257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302257"
},
{
"category": "external",
"summary": "2302448",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302448"
},
{
"category": "external",
"summary": "2302507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302507"
},
{
"category": "external",
"summary": "2302575",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302575"
},
{
"category": "external",
"summary": "2302774",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302774"
},
{
"category": "external",
"summary": "2302841",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302841"
},
{
"category": "external",
"summary": "2302842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302842"
},
{
"category": "external",
"summary": "2303028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303028"
},
{
"category": "external",
"summary": "2303342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303342"
},
{
"category": "external",
"summary": "2303403",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303403"
},
{
"category": "external",
"summary": "2303619",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303619"
},
{
"category": "external",
"summary": "2303820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303820"
},
{
"category": "external",
"summary": "2303821",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303821"
},
{
"category": "external",
"summary": "2303822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303822"
},
{
"category": "external",
"summary": "2303823",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303823"
},
{
"category": "external",
"summary": "2303824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303824"
},
{
"category": "external",
"summary": "2303825",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303825"
},
{
"category": "external",
"summary": "2303829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303829"
},
{
"category": "external",
"summary": "2304073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304073"
},
{
"category": "external",
"summary": "2304231",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304231"
},
{
"category": "external",
"summary": "2304232",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304232"
},
{
"category": "external",
"summary": "2304235",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304235"
},
{
"category": "external",
"summary": "2304238",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304238"
},
{
"category": "external",
"summary": "2304799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304799"
},
{
"category": "external",
"summary": "2304810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304810"
},
{
"category": "external",
"summary": "2304815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304815"
},
{
"category": "external",
"summary": "2304993",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304993"
},
{
"category": "external",
"summary": "2305274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305274"
},
{
"category": "external",
"summary": "2305295",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305295"
},
{
"category": "external",
"summary": "2305660",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305660"
},
{
"category": "external",
"summary": "2305880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305880"
},
{
"category": "external",
"summary": "2306026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306026"
},
{
"category": "external",
"summary": "2306387",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306387"
},
{
"category": "external",
"summary": "2306577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306577"
},
{
"category": "external",
"summary": "2307823",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307823"
},
{
"category": "external",
"summary": "2307835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307835"
},
{
"category": "external",
"summary": "2307909",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307909"
},
{
"category": "external",
"summary": "2308091",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308091"
},
{
"category": "external",
"summary": "2308101",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308101"
},
{
"category": "external",
"summary": "2308144",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308144"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2308304",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308304"
},
{
"category": "external",
"summary": "2308442",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308442"
},
{
"category": "external",
"summary": "2308446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308446"
},
{
"category": "external",
"summary": "2309191",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309191"
},
{
"category": "external",
"summary": "2309195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309195"
},
{
"category": "external",
"summary": "2309485",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309485"
},
{
"category": "external",
"summary": "2309486",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309486"
},
{
"category": "external",
"summary": "2309487",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309487"
},
{
"category": "external",
"summary": "2309488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309488"
},
{
"category": "external",
"summary": "2309489",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309489"
},
{
"category": "external",
"summary": "2309700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309700"
},
{
"category": "external",
"summary": "2310369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310369"
},
{
"category": "external",
"summary": "2310385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310385"
},
{
"category": "external",
"summary": "2310841",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310841"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311042",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311042"
},
{
"category": "external",
"summary": "2311043",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311043"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2311468",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311468"
},
{
"category": "external",
"summary": "2311551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311551"
},
{
"category": "external",
"summary": "2311790",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311790"
},
{
"category": "external",
"summary": "2311867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311867"
},
{
"category": "external",
"summary": "2311885",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311885"
},
{
"category": "external",
"summary": "2311893",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311893"
},
{
"category": "external",
"summary": "2312137",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312137"
},
{
"category": "external",
"summary": "2312442",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312442"
},
{
"category": "external",
"summary": "2313178",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313178"
},
{
"category": "external",
"summary": "2313203",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313203"
},
{
"category": "external",
"summary": "2313515",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313515"
},
{
"category": "external",
"summary": "2313717",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313717"
},
{
"category": "external",
"summary": "2313736",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313736"
},
{
"category": "external",
"summary": "2314200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314200"
},
{
"category": "external",
"summary": "2314211",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314211"
},
{
"category": "external",
"summary": "2314404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314404"
},
{
"category": "external",
"summary": "2314454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314454"
},
{
"category": "external",
"summary": "2314636",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314636"
},
{
"category": "external",
"summary": "2315624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315624"
},
{
"category": "external",
"summary": "2315651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315651"
},
{
"category": "external",
"summary": "2315666",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315666"
},
{
"category": "external",
"summary": "2315709",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315709"
},
{
"category": "external",
"summary": "2315733",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315733"
},
{
"category": "external",
"summary": "2315846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315846"
},
{
"category": "external",
"summary": "2318490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318490"
},
{
"category": "external",
"summary": "2319102",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319102"
},
{
"category": "external",
"summary": "2319238",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319238"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8676.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.0 Security, Enhancement, \u0026 Bug Fix Update",
"tracking": {
"current_release_date": "2025-01-06T19:47:24+00:00",
"generator": {
"date": "2025-01-06T19:47:24+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:8676",
"initial_release_date": "2024-10-30T14:25:22+00:00",
"revision_history": [
{
"date": "2024-10-30T14:25:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-30T14:25:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T19:47:24+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.17 for RHEL 9",
"product": {
"name": "RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product_id": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product_id": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product_id": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Kokorin Vsevolod"
]
}
],
"cve": "CVE-2023-26136",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2023-07-03T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2219310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the tough-cookie package which allows Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tough-cookie: prototype pollution in cookie memstore",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-26136"
},
{
"category": "external",
"summary": "RHBZ#2219310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-26136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-26136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26136"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/commit/12d474791bb856004e858fdb1c47b7608d09cf6e",
"url": "https://github.com/salesforce/tough-cookie/commit/12d474791bb856004e858fdb1c47b7608d09cf6e"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/issues/282",
"url": "https://github.com/salesforce/tough-cookie/issues/282"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/releases/tag/v4.1.3",
"url": "https://github.com/salesforce/tough-cookie/releases/tag/v4.1.3"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2023/07/msg00010.html",
"url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00010.html"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873",
"url": "https://security.snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873"
}
],
"release_date": "2023-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tough-cookie: prototype pollution in cookie memstore"
},
{
"cve": "CVE-2023-26364",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2023-11-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2250364"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Adobe CSS Tools. An improper input validation could result in a minor denial of service while parsing a malicious CSS with the parse component. User interaction and privileges are not required to jeopardize an environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "css-tools: Improper Input Validation causes Denial of Service via Regular Expression",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-26364"
},
{
"category": "external",
"summary": "RHBZ#2250364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250364"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-26364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26364"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-26364",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26364"
},
{
"category": "external",
"summary": "https://github.com/adobe/css-tools/security/advisories/GHSA-hpx4-r86g-5jrg",
"url": "https://github.com/adobe/css-tools/security/advisories/GHSA-hpx4-r86g-5jrg"
}
],
"release_date": "2023-11-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "No mitigation is yet available for this vulnerability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "css-tools: Improper Input Validation causes Denial of Service via Regular Expression"
},
{
"cve": "CVE-2024-24786",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268046"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang\u0027s protobuf module, where the unmarshal function can enter an infinite loop when processing certain invalid inputs. This issue occurs during unmarshaling into a message that includes a google.protobuf.Any or when the UnmarshalOptions.DiscardUnknown option is enabled. This flaw allows an attacker to craft malicious input tailored to trigger the identified flaw in the unmarshal function. By providing carefully constructed invalid inputs, they could potentially cause the function to enter an infinite loop, resulting in a denial of service condition or other unintended behaviors in the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "RHBZ#2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786"
},
{
"category": "external",
"summary": "https://go.dev/cl/569356",
"url": "https://go.dev/cl/569356"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/",
"url": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2611",
"url": "https://pkg.go.dev/vuln/GO-2024-2611"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-28176",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268820"
}
],
"notes": [
{
"category": "description",
"text": "Jose was found to have an uncontrolled resource consumption vulnerability. Under certain conditions, the user\u0027s environment can consume an unreasonable amount of CPU time or memory during JWE decryption operations, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose: resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "RHBZ#2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q",
"url": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose: resource exhaustion"
},
{
"cve": "CVE-2024-41818",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-07-29T16:24:42+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2300499"
}
],
"notes": [
{
"category": "description",
"text": "A regular expression denial of service (ReDoS) flaw was found in fast-xml-parser in the currency.js script. By sending a specially crafted regex input, a remote attacker could cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: ReDOS at currency parsing in currency.js",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat has decided to rate this vulnerability as Important due to the potential loss of Availability and the low complexity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41818"
},
{
"category": "external",
"summary": "RHBZ#2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41818",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41818"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v"
}
],
"release_date": "2024-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: ReDOS at currency parsing in currency.js"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2025:8551
Vulnerability from csaf_redhat
Published
2025-06-04 22:58
Modified
2025-10-31 12:44
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14.18 Bug Fix Update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.14.18 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.14.18 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8551",
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "DFBUGS-2605",
"url": "https://issues.redhat.com/browse/DFBUGS-2605"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8551.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14.18 Bug Fix Update",
"tracking": {
"current_release_date": "2025-10-31T12:44:13+00:00",
"generator": {
"date": "2025-10-31T12:44:13+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:8551",
"initial_release_date": "2025-06-04T22:58:41+00:00",
"revision_history": [
{
"date": "2025-06-04T22:58:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-06-04T22:58:41+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:44:13+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.14 for RHEL 9",
"product": {
"name": "RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.14::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"product": {
"name": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"product_id": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-cli-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.14.18-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"product": {
"name": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"product_id": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-cli-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.14.18-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"product": {
"name": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"product_id": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-cli-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.14.18-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.14.18-9"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.14.18-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"product": {
"name": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"product_id": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-cli-rhel9\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.14.18-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.14.18-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.14.18-3"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.14.18-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le"
},
"product_reference": "odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x"
},
"product_reference": "odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64"
},
"product_reference": "odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64"
},
"product_reference": "odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"relates_to_product_reference": "9Base-RHODF-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64 as a component of RHODF 4.14 for RHEL 9",
"product_id": "9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64",
"relates_to_product_reference": "9Base-RHODF-4.14"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-29180",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270863"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer\u0027s machine. The lack of normalization before calling the middleware also allows the attacker to perform path traversal attacks on the target environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack-dev-middleware: lack of URL validation may lead to file leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in webpack-dev represents a important security issue due to its potential to expose sensitive files and compromise developer machines. By failing to validate URLs and normalize paths effectively, the middleware allows attackers to craft malicious requests that can retrieve arbitrary local files or perform unauthorized path traversal. This could lead to unauthorized access to confidential information, including source code, configuration files, and even system-level files. Given the widespread use of webpack-dev-middleware in web development environments, addressing this vulnerability promptly is important to prevent serious data breaches and protect the integrity of development processes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "RHBZ#2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6",
"url": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "webpack-dev-middleware: lack of URL validation may lead to file leak"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-06-04T22:58:41+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8551"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:b9f6fb8c6e5a919ff7b1aead2e220db45e010d285aa3134a060865f98dc8ff4d_ppc64le",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:bcb328a210baf1ccff7c7373d8cb80f951c8902e6f1b25f543e248923ff11bf1_amd64",
"9Base-RHODF-4.14:odf4/cephcsi-rhel9@sha256:e741ce258ceffff394b453da219439e788a7c60277569d2145667b0f1a27cefc_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:590d6f1c2d28e9750fb2bffec2dd60d943e6f3de5e3bf801917055c9053d55cb_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:7d462a0cb3bdaf33e7f1d68d2cc2c3b65937e97687a36a6c5f0c21002cba339b_s390x",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:dae4433fdd1054a34badc70ce5db933c936f9e270cbc93a03a408beac0731ee6_amd64",
"9Base-RHODF-4.14:odf4/mcg-cli-rhel9@sha256:eb314a5553470a5a881e277b1962f7219ee0968d4319e55cb7427258a73e3a25_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:58883135500207c3f149882421ab3d7c14ee8c934c107d563d1ac51d9dad2188_s390x",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:657f10ecba6e3e484483cc2bdfc7a7cda10f1fab85360c40bb9ef4f1929c4cf2_arm64",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:7600a8dcc458fdf3b029667c361b3babf0a42a8a8194bb3c90216abb0d37e617_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-core-rhel9@sha256:88643caf11bdef38053b7972a376035591e4ecfe03ed7a52b618211b1e1c3e6f_amd64",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:1eef1245af12bd0049fa88de90549ce23e6098f08cd8273fcbe1552ce5841f98_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:b70c0ff1f0c5c44f62d77927a3cb4fb22aa7924ba802b09d2f8ef66258522462_s390x",
"9Base-RHODF-4.14:odf4/mcg-operator-bundle@sha256:c3143fd1da13f7470f07df869630c4de1cd3c390676e096b2cc61df1ce0b3c20_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:1b220688bcbade808c2fc05d9160547b21fc34672ff653cb16360d485c721669_ppc64le",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:5e932572c6cc187fe1791abe29b71d5fdeb2c0e7a81ed90b46cb3d358aa25e71_arm64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:b93a4133ab036f4a44471e9c8ac0274e9651177d72ae3fdf1d73bbacb31b2e63_amd64",
"9Base-RHODF-4.14:odf4/mcg-rhel9-operator@sha256:dd9c5f35896ff7a7aa622510f969343e3d8c582659753dc6f8aa40bf21ce258f_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:0db1703649e40cdb563f269ccfb0e80724f13034b21e9c5482ea22a82af61b85_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:3739dbc4cfe67226e97b803279f65a017031d60b24a944d031232ce579a2501b_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-console-rhel9@sha256:86a2494cfd358f367ea250d8199d9baa2d6da7a0c6366ed03a55b0648da52c24_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:5c84ed51c74952ca24757662d3c4856b90cf0a4d856b3807f0c0b57752072b97_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:a32c47c452fce1a32a15880b9e5c2c561e656a26c143cc46a54368fcaa614863_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-operator-bundle@sha256:fb23e5e9463322406db0671616bad500c99d201386e38b6298165d169b32e8f1_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:30b766091deb8fca244ba8133226fcb71f06caea4601266875cb201b2c05df9d_s390x",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:a5e0d9864da87cbb2e787b51f44c9c1c4b5d73bb24aa6660e0bab25c68fa3e78_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:b9d281eb35128e5f1c96ba1383259dff9b2e60dbb27c092f27de4f2e12a8f08c_amd64",
"9Base-RHODF-4.14:odf4/ocs-client-rhel9-operator@sha256:e8860ec492739e0eee28bdefb5934d4274ef9bc49d4d74fb9015153a39958af8_arm64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:541fd697cc7cad79abd38c1ea593745d8b89153cc82137136cbfa840257d8dca_amd64",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:823e1ad6153e94cb6aa52b92652c23082007af7127a9510aa025e5ebf67c3959_s390x",
"9Base-RHODF-4.14:odf4/ocs-metrics-exporter-rhel9@sha256:d4358fa87319d6aad05d24410df40d297dc1d7d9f871ad53968d9b989b4a0c04_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:1ac7a4b8174013392bcd7d1b3d2750a29ffa0e12690f75214397e32fef5d0053_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:6989d9c619455ec241c7629170e8fa2994b94fbde5f31b03d83ddf26572a3ac0_amd64",
"9Base-RHODF-4.14:odf4/ocs-operator-bundle@sha256:74c32e2703174adcbc40d6a022c8760b7109d427efe4a1bba9894ccf1b55a77f_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:16c65fa945a5c4acfa93c74ae48008480fa719c58a3045883bb71374008a9860_ppc64le",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:2388a24c8af1fc05838cdf9e9cd11e5e7c480a496384247120fe2e62b6ec8c72_s390x",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:5fb501bb9da6e224cf496eca1e0f5b3de4acb12a770725eb81ddbf703c703b3e_amd64",
"9Base-RHODF-4.14:odf4/ocs-rhel9-operator@sha256:96f3aedecbf2afce4050cf63930c016c70e190590ebf6786ac8ddf407dc17a1f_arm64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:355041c3ff87e109ae1a6cd8cf7ef6e3057015072baefb4ecc97c4c23459a5fb_s390x",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:52b0a09f6cb2d8ac7ad1412fede0ae0a8f849f3a51009ab5cec9630cb01cc504_amd64",
"9Base-RHODF-4.14:odf4/odf-console-rhel9@sha256:b38f1e2be1d00434a69704568ee1c0325dbcd2fd5af187815cc7a926d2954274_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:178b3909c6e97052a4931abafac49680dc443139dd8e06f84048e37383369c33_s390x",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:89163387bcc55041336e7e789ce1c2c22bcbba051253df27380a7067a5d34f71_ppc64le",
"9Base-RHODF-4.14:odf4/odf-cosi-sidecar-rhel9@sha256:adbeae924b38597ac5a25d183b95d1466e93d22850b41a7b5e55ffdd6c925875_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:048b52f424309a244c829a29199126a3700c34999f567adc205264192df18e40_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:9cc58ece0e07286bd6b645ee0958383fab4760058ab441e40262115a37f7fc08_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-operator-bundle@sha256:f774072bc4483ac626a4aa34fb4753a4c8dde1392e90b2cf5088942558187651_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:58d332ed50ac84a78ae3f874af7bc3078505e1f39504cff98f5c96ca577dba62_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:8d0d772c6abdf6850cc914b33dbcacf04e56482aed44727d8fcd62484a769ba7_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:91d930b98e7e77857d76c5f0de8f33d7129eb1899cd33e34a81e5fb132fe1939_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-rhel9-operator@sha256:d9d84e12ac2cbc4d6b3bade470963db183576a0f03e53fb524cec61affcaadc0_s390x",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:22af185eeb91be6ce4f946819717f3dc6f26a0cb01ad735fedf5ce5c31cee9ab_ppc64le",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:4ac05e6f5da14f77aa642c86d1bc9487c7d4229b3845e4df78dbe70ca7e80836_arm64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:53ea6080dbc702be75df81c9b27f53f8d5200f9de059d0e2ddf7d4f7c8943bf8_amd64",
"9Base-RHODF-4.14:odf4/odf-csi-addons-sidecar-rhel9@sha256:b7e8dac029bb2e4d43a3318da70c1ab9e78c834a425c0b4b580f194c51c5fcfe_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:18fb47b295feed7c13b7b8e0ab0779a0f1ad0ba920a98de3114e9c963b37da16_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:3fa07513b80ec362b896594733f39869f20de9075a9ed659575dac80fb2e50c6_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-console-rhel9@sha256:c76a2aa281b7f23694cad709563ae38f6a2612b03b6dea758800925d1fb0d1e7_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:4a3c1211a5b08832eea9014edb8f15908a4c64da4929a5535e21e5f5f0ce7440_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:aa9d5d9a90379dfa3d208d19bea5fe0ca1358594b12949002cf91b313d5103ba_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-operator-bundle@sha256:b20e2a1c687499d1b356f983c896feeffb120ee7913386cf9846f805f5adf078_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:0fd956965990fdb47a000886906d164dab8770f8810b6f535b30363cbebb193a_ppc64le",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:54d8a857fb70a44333721f7ee19f7465e44f40e9041a1feaa5ad21a7c9e64fc1_amd64",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:5c32c4e197c2cd9642ecd4dfebcbf0793920722adb1669175471074595d6e85c_s390x",
"9Base-RHODF-4.14:odf4/odf-multicluster-rhel9-operator@sha256:cc1549214c6df5e4a1a1d578bde3cfb40e529c8bdf721a0d66315b60220f02bb_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:707709aa3d410109ff94dace09c191683d1c329da6c929f5046e9e36e9f196ee_arm64",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:adb5cb009e39713cebf5dc677647a1588ca6913437aba15a1f17611055a3b556_ppc64le",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:b4747d5081a27c2b4159142c7673d367f2205b6da373386142edfc9b6e1f7e4e_s390x",
"9Base-RHODF-4.14:odf4/odf-must-gather-rhel9@sha256:bf5e586204aa10fd361322123bf0924ea6f112d7418ea6d50f3fa732c38f18cf_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:1595d223f68167f107979b76b5a3adba064b75cacec6618fbedaaedf723a0b6c_s390x",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:aef5fa1799fdd49f75e6cf00348e811c14792929fe4c454b5180392b506bb92a_amd64",
"9Base-RHODF-4.14:odf4/odf-operator-bundle@sha256:c78c6dd624406ef896035e3ea107b32367a9f02d27184086370546ed2b21d03f_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:35c52a3cba34e249a4da7cbefbbe2de72d9c6fd28ef6ba27ea278d1664bea4ad_amd64",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:616dacc42b9e39aada7d97a80fbeef591b48f2dc13b9a614e1762f0fcfc67ae1_s390x",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:855addbd5d6838d751b679d13c8c1a722b144bf67b1f04465488beeeb4bb7f12_ppc64le",
"9Base-RHODF-4.14:odf4/odf-rhel9-operator@sha256:b4e8e09091410747c9e10954e37e24e23bf1df970ef8ac4b41e3f01296b92466_arm64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:0cb12e9d9368dd9ba989a7feb5f5a068c5e86a46c3e007be824e8b245c084e55_amd64",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:4864bdc13255f399060b23acb338c0cab89bb12b1e9c25b425bed2708c703916_ppc64le",
"9Base-RHODF-4.14:odf4/odr-cluster-operator-bundle@sha256:784af1811346b0d1a41774a05bb8fddd829c8fe11058ce0dd27e2e916a0fd50f_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:003c68a08b13aa517cacec54ba71d677bc2077b98c56e44527d8709de9542b81_s390x",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:23d29a80150ec4b20d9a042fe09e6803d420aeedbd7bb97ca6b71898714fa50d_ppc64le",
"9Base-RHODF-4.14:odf4/odr-hub-operator-bundle@sha256:f762ea7b249c2b9e1b77ca861bfa2e66fb5a2e86bf1c46adcab2c0d3f0962b17_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:16b242ff1b14953c3e0d8e6c6aee1907b58e2ea8847c55e698c0dcea113786c4_amd64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:3565d7ed884cb5a102edef6109da8d37d248ba58a1f273949ff94d525c2fb29c_arm64",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6267de184448e87a5e4386c40e85b35dbe8b9d0e41809f30d45d75e425cf34d9_s390x",
"9Base-RHODF-4.14:odf4/odr-rhel9-operator@sha256:6c556ff4a2554502498dfbdb6cf34045b812c974b1449862ff0389fc3590012e_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:450d1d15edfe450040967702dfcad42d332f590953dcdfb3f7aca95f3a331156_ppc64le",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:563003275c2eb1f9769f8e64d8ec9c280d2ae68ea60a4b72e078c3d3934e6107_s390x",
"9Base-RHODF-4.14:odf4/rook-ceph-rhel9-operator@sha256:70141f91e796afbf0dad29869b9bbe31af4b86175836d00dcb55f79e9de54302_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
RHSA-2024:8676
Vulnerability from csaf_redhat
Published
2024-10-30 14:25
Modified
2025-10-31 18:57
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.0 Security, Enhancement, & Bug Fix Update
Notes
Topic
Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.17.0 on Red Hat Enterprise Linux 9.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.
These updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:
https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/4.17_release_notes/index
All Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.17.0 on Red Hat Enterprise Linux 9.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.\n\nThese updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/4.17_release_notes/index\n\nAll Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8676",
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2059669",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2059669"
},
{
"category": "external",
"summary": "2190161",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2190161"
},
{
"category": "external",
"summary": "2219310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219310"
},
{
"category": "external",
"summary": "2241329",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241329"
},
{
"category": "external",
"summary": "2245068",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245068"
},
{
"category": "external",
"summary": "2250364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250364"
},
{
"category": "external",
"summary": "2253013",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253013"
},
{
"category": "external",
"summary": "2257271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257271"
},
{
"category": "external",
"summary": "2259668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259668"
},
{
"category": "external",
"summary": "2262777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262777"
},
{
"category": "external",
"summary": "2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "2271773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271773"
},
{
"category": "external",
"summary": "2272597",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272597"
},
{
"category": "external",
"summary": "2275225",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275225"
},
{
"category": "external",
"summary": "2275965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275965"
},
{
"category": "external",
"summary": "2276393",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276393"
},
{
"category": "external",
"summary": "2276672",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276672"
},
{
"category": "external",
"summary": "2279751",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279751"
},
{
"category": "external",
"summary": "2279876",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279876"
},
{
"category": "external",
"summary": "2280308",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280308"
},
{
"category": "external",
"summary": "2280608",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280608"
},
{
"category": "external",
"summary": "2280637",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280637"
},
{
"category": "external",
"summary": "2283994",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283994"
},
{
"category": "external",
"summary": "2292435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292435"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2294234",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294234"
},
{
"category": "external",
"summary": "2294723",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294723"
},
{
"category": "external",
"summary": "2297265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297265"
},
{
"category": "external",
"summary": "2297295",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297295"
},
{
"category": "external",
"summary": "2297447",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297447"
},
{
"category": "external",
"summary": "2297454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297454"
},
{
"category": "external",
"summary": "2299630",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299630"
},
{
"category": "external",
"summary": "2299639",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299639"
},
{
"category": "external",
"summary": "2300021",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300021"
},
{
"category": "external",
"summary": "2300312",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300312"
},
{
"category": "external",
"summary": "2300331",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300331"
},
{
"category": "external",
"summary": "2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "2301889",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301889"
},
{
"category": "external",
"summary": "2302201",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302201"
},
{
"category": "external",
"summary": "2302257",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302257"
},
{
"category": "external",
"summary": "2302448",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302448"
},
{
"category": "external",
"summary": "2302507",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302507"
},
{
"category": "external",
"summary": "2302575",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302575"
},
{
"category": "external",
"summary": "2302774",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302774"
},
{
"category": "external",
"summary": "2302841",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302841"
},
{
"category": "external",
"summary": "2302842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302842"
},
{
"category": "external",
"summary": "2303028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303028"
},
{
"category": "external",
"summary": "2303342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303342"
},
{
"category": "external",
"summary": "2303403",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303403"
},
{
"category": "external",
"summary": "2303619",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303619"
},
{
"category": "external",
"summary": "2303820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303820"
},
{
"category": "external",
"summary": "2303821",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303821"
},
{
"category": "external",
"summary": "2303822",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303822"
},
{
"category": "external",
"summary": "2303823",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303823"
},
{
"category": "external",
"summary": "2303824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303824"
},
{
"category": "external",
"summary": "2303825",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303825"
},
{
"category": "external",
"summary": "2303829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303829"
},
{
"category": "external",
"summary": "2304073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304073"
},
{
"category": "external",
"summary": "2304231",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304231"
},
{
"category": "external",
"summary": "2304232",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304232"
},
{
"category": "external",
"summary": "2304235",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304235"
},
{
"category": "external",
"summary": "2304238",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304238"
},
{
"category": "external",
"summary": "2304799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304799"
},
{
"category": "external",
"summary": "2304810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304810"
},
{
"category": "external",
"summary": "2304815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304815"
},
{
"category": "external",
"summary": "2304993",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304993"
},
{
"category": "external",
"summary": "2305274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305274"
},
{
"category": "external",
"summary": "2305295",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305295"
},
{
"category": "external",
"summary": "2305660",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305660"
},
{
"category": "external",
"summary": "2305880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2305880"
},
{
"category": "external",
"summary": "2306026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306026"
},
{
"category": "external",
"summary": "2306387",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306387"
},
{
"category": "external",
"summary": "2306577",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2306577"
},
{
"category": "external",
"summary": "2307823",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307823"
},
{
"category": "external",
"summary": "2307835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307835"
},
{
"category": "external",
"summary": "2307909",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2307909"
},
{
"category": "external",
"summary": "2308091",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308091"
},
{
"category": "external",
"summary": "2308101",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308101"
},
{
"category": "external",
"summary": "2308144",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308144"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2308304",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308304"
},
{
"category": "external",
"summary": "2308442",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308442"
},
{
"category": "external",
"summary": "2308446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308446"
},
{
"category": "external",
"summary": "2309191",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309191"
},
{
"category": "external",
"summary": "2309195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309195"
},
{
"category": "external",
"summary": "2309485",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309485"
},
{
"category": "external",
"summary": "2309486",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309486"
},
{
"category": "external",
"summary": "2309487",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309487"
},
{
"category": "external",
"summary": "2309488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309488"
},
{
"category": "external",
"summary": "2309489",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309489"
},
{
"category": "external",
"summary": "2309700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309700"
},
{
"category": "external",
"summary": "2310369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310369"
},
{
"category": "external",
"summary": "2310385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310385"
},
{
"category": "external",
"summary": "2310841",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310841"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311042",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311042"
},
{
"category": "external",
"summary": "2311043",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311043"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2311468",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311468"
},
{
"category": "external",
"summary": "2311551",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311551"
},
{
"category": "external",
"summary": "2311790",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311790"
},
{
"category": "external",
"summary": "2311867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311867"
},
{
"category": "external",
"summary": "2311885",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311885"
},
{
"category": "external",
"summary": "2311893",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311893"
},
{
"category": "external",
"summary": "2312137",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312137"
},
{
"category": "external",
"summary": "2312442",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312442"
},
{
"category": "external",
"summary": "2313178",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313178"
},
{
"category": "external",
"summary": "2313203",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313203"
},
{
"category": "external",
"summary": "2313515",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313515"
},
{
"category": "external",
"summary": "2313717",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313717"
},
{
"category": "external",
"summary": "2313736",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313736"
},
{
"category": "external",
"summary": "2314200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314200"
},
{
"category": "external",
"summary": "2314211",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314211"
},
{
"category": "external",
"summary": "2314404",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314404"
},
{
"category": "external",
"summary": "2314454",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314454"
},
{
"category": "external",
"summary": "2314636",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314636"
},
{
"category": "external",
"summary": "2315624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315624"
},
{
"category": "external",
"summary": "2315651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315651"
},
{
"category": "external",
"summary": "2315666",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315666"
},
{
"category": "external",
"summary": "2315709",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315709"
},
{
"category": "external",
"summary": "2315733",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315733"
},
{
"category": "external",
"summary": "2315846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315846"
},
{
"category": "external",
"summary": "2318490",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2318490"
},
{
"category": "external",
"summary": "2319102",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319102"
},
{
"category": "external",
"summary": "2319238",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319238"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8676.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.0 Security, Enhancement, \u0026 Bug Fix Update",
"tracking": {
"current_release_date": "2025-10-31T18:57:04+00:00",
"generator": {
"date": "2025-10-31T18:57:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:8676",
"initial_release_date": "2024-10-30T14:25:22+00:00",
"revision_history": [
{
"date": "2024-10-30T14:25:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-30T14:25:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T18:57:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.17 for RHEL 9",
"product": {
"name": "RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product_id": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product_id": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.0-46"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product_id": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.0-66"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.0-7"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.0-53"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.0-126"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.0-51"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.0-69"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.0-31"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.0-29"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.0-17"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.0-14"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.0-20"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.0-40"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Kokorin Vsevolod"
]
}
],
"cve": "CVE-2023-26136",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2023-07-03T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2219310"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the tough-cookie package which allows Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tough-cookie: prototype pollution in cookie memstore",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-26136"
},
{
"category": "external",
"summary": "RHBZ#2219310",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2219310"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-26136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-26136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26136"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/commit/12d474791bb856004e858fdb1c47b7608d09cf6e",
"url": "https://github.com/salesforce/tough-cookie/commit/12d474791bb856004e858fdb1c47b7608d09cf6e"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/issues/282",
"url": "https://github.com/salesforce/tough-cookie/issues/282"
},
{
"category": "external",
"summary": "https://github.com/salesforce/tough-cookie/releases/tag/v4.1.3",
"url": "https://github.com/salesforce/tough-cookie/releases/tag/v4.1.3"
},
{
"category": "external",
"summary": "https://lists.debian.org/debian-lts-announce/2023/07/msg00010.html",
"url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00010.html"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873",
"url": "https://security.snyk.io/vuln/SNYK-JS-TOUGHCOOKIE-5672873"
}
],
"release_date": "2023-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tough-cookie: prototype pollution in cookie memstore"
},
{
"cve": "CVE-2023-26364",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2023-11-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2250364"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Adobe CSS Tools. An improper input validation could result in a minor denial of service while parsing a malicious CSS with the parse component. User interaction and privileges are not required to jeopardize an environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "css-tools: Improper Input Validation causes Denial of Service via Regular Expression",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-26364"
},
{
"category": "external",
"summary": "RHBZ#2250364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250364"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-26364",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26364"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-26364",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-26364"
},
{
"category": "external",
"summary": "https://github.com/adobe/css-tools/security/advisories/GHSA-hpx4-r86g-5jrg",
"url": "https://github.com/adobe/css-tools/security/advisories/GHSA-hpx4-r86g-5jrg"
}
],
"release_date": "2023-11-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "No mitigation is yet available for this vulnerability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "css-tools: Improper Input Validation causes Denial of Service via Regular Expression"
},
{
"cve": "CVE-2024-24786",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268046"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang\u0027s protobuf module, where the unmarshal function can enter an infinite loop when processing certain invalid inputs. This issue occurs during unmarshaling into a message that includes a google.protobuf.Any or when the UnmarshalOptions.DiscardUnknown option is enabled. This flaw allows an attacker to craft malicious input tailored to trigger the identified flaw in the unmarshal function. By providing carefully constructed invalid inputs, they could potentially cause the function to enter an infinite loop, resulting in a denial of service condition or other unintended behaviors in the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-835: Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to ensure the most restrictive setting needed for operational requirements. Event logs are collected and processed for centralization, correlation, analysis, monitoring, reporting, alerting, and retention. This process ensures that audit logs are generated for specific events involving sensitive information, enabling capabilities like excessive CPU usage, long execution times, or processes consuming abnormal amounts of memory. Static code analysis and peer code review techniques are used to execute robust input validation and error-handling mechanisms to ensure all user inputs are thoroughly validated, preventing infinite loops caused by malformed or unexpected input, such as unbounded user input or unexpected null values that cause loops to never terminate. In the event of successful exploitation, process isolation limits the effect of an infinite loop to a single process rather than allowing it to consume all system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "RHBZ#2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786"
},
{
"category": "external",
"summary": "https://go.dev/cl/569356",
"url": "https://go.dev/cl/569356"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/",
"url": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2611",
"url": "https://pkg.go.dev/vuln/GO-2024-2611"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-28176",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268820"
}
],
"notes": [
{
"category": "description",
"text": "Jose was found to have an uncontrolled resource consumption vulnerability. Under certain conditions, the user\u0027s environment can consume an unreasonable amount of CPU time or memory during JWE decryption operations, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose: resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "RHBZ#2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q",
"url": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose: resource exhaustion"
},
{
"cve": "CVE-2024-41818",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-07-29T16:24:42+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2300499"
}
],
"notes": [
{
"category": "description",
"text": "A regular expression denial of service (ReDoS) flaw was found in fast-xml-parser in the currency.js script. By sending a specially crafted regex input, a remote attacker could cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: ReDOS at currency parsing in currency.js",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat has decided to rate this vulnerability as Important due to the potential loss of Availability and the low complexity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41818"
},
{
"category": "external",
"summary": "RHBZ#2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41818",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41818"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v"
}
],
"release_date": "2024-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: ReDOS at currency parsing in currency.js"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-30T14:25:22+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:2b9e511b21d4fefe8450f014962f2450db3e64af07f5e6e4bbfdaafafdfdc1f4_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:9a822fddffde8f67711c5025a89e003341011e0b8145cfd5b840849cabbe68a0_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:e35426de9ea6419f4981d8c6861867fc3eadcde4e41757b9a8f1ed4f2fa00dc9_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:78656a47235af49c9a7bc75d9729987edf39a77077a3f478f5b46658df18878a_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:92544e943e160d8fce1a9710a9d67ca4ccb795ff846edf7717d1e52835899202_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:9615793800efca765c5ae588e0547e4e18bdfe264c8a92303fbbc39276c74580_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:d6e30344ec1d541b6791b0e58cb48f4f3f492069ff8392005e8d1f16350c80e2_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:7bc24afafec3a0896c887d7eeeca47eb6f0cb12e35c62aa212ce55210cb1512d_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:93b238c24a3623bd635e162caa9a30ad7158db25eb83b545e9b365db0f769161_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:fb6507b95b53b19d90b82c3ac2a3b0264ebbdb9d4a8ceff3006e8a446a1cef49_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:22b568f083c7563ffbb8d23807837a0f78cedeb156cffe9110906f3b6e0c70fb_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:50f66564131a5b2b695582956c80515d7eea64d1c009479665937c97a76e2348_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:a27c28ecf714cc248323a35eb58daec2aa611a318f0e61eb0defe0eaa80eb2f4_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:bee14d945af0620ad1666e67be750324a1814cbf573256c1c88521e18f9877f7_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:71b79ea2f0356740a0e53e89a0422f8da608dd43337dd07dfcbadc9f9d8a8884_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:729fdaad48dfca53af4b3bf9bbf3cbf9dd25d5c50ddcbac03d0e8738aeb997cc_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ed0d44fd0215cd299b4929617fa1f05ea31c6ee3cc078fbf6cc884e02a59beee_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:1d189e8c4dfcc998d5887e1c5f06e874fa0beed29bc8f87f279299d58124a505_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:5f92812a17a6637280387a3033865d8bd13ee8d6506f8e17489cefb79c53f58e_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:7eba9da5ba5071b411bc99d33eee04e3f4530516ad984524920de542629e9b55_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f8c6007e32c54ffe0597952ae6eb1d38435188d605f3995ec785dff43da4257d_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:824823d527bdbbdd2abb773e054c12b41243e15467ada76689af4fdd6fae894a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:9521eae22f7669dea4b31841d7cfe11e5d92155b11785afb2977cea9c5d917dc_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:a94961fd2c5aea06922c9c365c3a6296abf073e09a520f190a45f687cabc7b1d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:26503c487a93ad520e1953ccad9200be808bc93648db90eaba3a73a340483541_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:78f3e869e50bd0e69d8e6efc6e6de357aadcc06ac3659d6ec7a053cda11be88b_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:fb473ae152002d124ff662e94ca9bf68f8f6a4c61c40d4f2929a55ef1c25cd20_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:0bb022ca33965fb0f9de7df36f15377a33c90d873050dcbd763370ac1f06295a_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1070f8191e3ead7781876ed4d84ac5c5eeb54a1fa4d2c40701ebf393d345111c_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:8dbdc5fb2b8d4551e5896f65654b3dae8a5164c12b1e1ec6d7fdda348a7b8c7d_arm64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:e7afe93fc1d88c385edc3d8ab3173e7bfb4a4f890d371836d5d2f72a2eb4abb5_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:147c2497071460ba266fc5ef0768d82edb6be9d7ffaa0c514e49308cf8017e7a_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:28fd2ef06dbf379ad4204877a3492933a731f2bc1d6dd7fc1600f52a3dc3ca47_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:6616912ec376e6993346b38bf637eb47d7a00aa9f58120899470c8353be02a0e_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:60f6533b7262bbfad59c5e14dff71878d3ea501c3b46194155ce53bc43a119e4_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:664c467321c9a5c3fec9d4fd85e16ab50677684b480cd1f346638f794ee7357c_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:b14752e1e9e6b004429f3c36dbaf4ec4d36d22ab9ac84c2d5158e8fbdfb214dd_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:3472c7c043b318c2569e8a900527b13d052f1860082dba13723514795cedeec0_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54828ef99fc8d8fa3801c2ea0338a56f382018e4ae1a800dcd328fe43f7149be_arm64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:54a164ce15d25597fa3939709acbe467f728ce4f4165771a685fc507edfb92a3_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:cfa36a55dc542e3e1332a55a59588a753f80e32d905847e51efdd1478fd58f0b_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:0e2a71ed4eaa44f786428e18e01d90d3b0384169c78c5654e2ebbaac3a5ee2a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:8046b84915034f60a5e5e349b001f04b713b3aa71ced136390c5086e0c351dd4_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:9cbf21dad9ed5738ae1feb112707af3e74e02784795addf07ee4228bbd22e932_s390x",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:a42d48b82e34f1f7cb731c3bdd25e81dc5ff3a61a3ca0b8b5eecefb5e2218be0_arm64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:89cc7f0d6adb957e0f3adbdb2c023d4a6dda89e388a94d0b4015e0853971075e_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:917e625bfea670e543f857cf7cea31380b76ceac862bee61cc490cebabd23081_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:b1ba270980579090845909bb4f1e8a7b98ce8816c7c5ea60903432d138d29310_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:2be1d5ad630b9e91f30e0c82cfee52231d095cee87908949170e40a39f4ed814_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:37ec39720b1ce9701630635f158ad20414b1cda335b15b11526a7838ed189a54_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:7c59771279f5227246a941925160ca2f9fc169bd13972ab68a476e62308707e1_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:328ddae72c795012c7671c214d9a84d539264f8fe855d1a9e2dbb74590e72076_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:99d8b3aedcc57f57716bba144b991f7f223cdcc47ec37903c85aa20df295b3d4_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:f3f28074884a29b5d28f4535af6489f1ca8326dd60689c4bc8c862277dcb6e22_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:12e2b71cea2c63fb14363334287f5affa4ff3dc84f24dd51b5f57ba6a751c2da_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:7fa969e6714e0c3851f30999df5c823cd5738f28e1b2f6c06d940541c6edad4e_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:a0ac08a8a3ee9155338182d47bf55595a78aec3811c70f3fedb2ed461aad3319_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b96b09407708601d04abb6a90d16f6f1260839534d64238b6aa4c7a5f458a6a4_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:02e65965166ec9794f11b663de59671f159f8b2fef4d56ee5589b26bef342168_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:322bae96941ede565a681ad98fc287f442f36888e0ed2b5ec4b309c702c7488b_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:6e44cf5a814ceb7fea6ef925f6381a279837ebe2baf2980f4937e0c752afa5e2_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:7a206b9fe0e540674fc9ec97b338607e61b8bfd3bfe30855835d0a940ca9304c_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:25052271f038b691ef973ac5a9fc02eee015a0427e087a5a390f1e31f7823d79_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:3342a17a1afca419dbfbff815261e91cdf8dcf0eecaf5a25a1713a39f3f95bf4_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:df597ffd1b0d14d394e39b1d92fc90797bea5386a390450193d99f7db5bc377c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:883ba750931a93d30ff1dd3ed78592940a0079640da3d79400261f43fbecb69f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:baf554d45b1fb4b38b264145809c10c7733120104bc4d8bd9e1ecb0c428db382_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:c05b5597918214f845c7243b7407b6cc3c88f644eec504585bd411727376b898_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:0810e85e929ad83a8593eab74a312b9c49ec94ea9833a37b7f06bca87ca9647b_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:54cec6c71192cc9cb6c2bbcd812a5dcccd4905d5d7e822b4012622bb235fe75c_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:66de77eb933a0fb4e0d98d2c1326212d494f6c3aa2e235f27f2a641fb31ff4af_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:941371cee3ee7dd127d5663b7e1bcb39c6565031c11fb508f07c40f37aaee4d1_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:6978d438b80f8fd7572c792155c2f86cc6fa55ff0b8cb1d45bbe04e42d185fe3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:7c09fb5c685be2a3029d02a35417e681f3b034269d1ac3014c1c5cdd2e035e61_s390x",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:8ccd7099f174842dab551c27a55d822cfb12d8ba26c3528f605697cbfbbf8e70_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:d0a1a2f77001e06cdb650b857433d6eebeb53eb5337354c8a042003db80387db_arm64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:01d80d9fc9cbc3f3fecab4716bde805ad97b1fbcd4942ecbb07eab9fb4714012_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:6e3b814a41abf41ec9cdb5d71aafc79a086fc37f2986a3fd74f75341a4af91a2_amd64",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:f8e5b7818849a95ca57347496baa35507ce634c645643303205309f55572db7d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:0d5aa39387a341a497a0cbc8d18c0e1e050e118b08243f5d8395ffe7394cc5f1_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:26541764bf0b79a4cc87600d1a1981a247d7678f9a8c37af62e80f22213159a7_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:75a85b98bcfa527709b8b1f16694a8bf68d5ea84a66b73baf5fea927df6e2904_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:37af72217b81a8a7b0d968ec09a396f1840155f2a472eaa68927281f080d137f_amd64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:70ff7d9b8f6fb97fbe72768ed97519cd9e2b60dedbe1133d17fd0e317079ab3f_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:9d7f8b892351de60609c30d187c5547ba4bec3be2dadd0e6d8ded2c4f3c1e79e_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:f94cd1be8e371e8c85062be3e4475157cb628d339c1716bf96167e02703edf97_arm64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1b641a6aa2c4b1bc79ab0188c56f533fd89459be71b2b34f794faebaa66fd1f5_s390x",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:1e2ebbe9f71a03bfc6a0bd90f786293d9eec473ba2d570c8662a7f8d03dcc1b4_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:40d75cfa1eb657512dc4da888a5bb793a3ef3d6726665bc9ad7009cdd4166a1f_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:22c88c1f6be208bc0a5f0053f99ea728b9e457e150b4236a04304810270f1f80_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:50d04e71ae52f1a246d1509c5f2abbcb2f2bb2209090526b3357b8012b4b67d5_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:d7e8549c1a5cabd7324c589eadf9ccebccc1abbfb69d47826baaeaebc283c6a3_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:0223d74679590c8a5fbd34f3d793c05ec671ecb406b2055166bd54f09f75bbda_amd64",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:137a8a07adae2c0bb5fd1ac2a5823ffd85abe1035512a04e112e55b0aa3dc163_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:987ed8aa1347a831f61a4d65011f5bd00a700c65f6e7fa669ff3f38131425705_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:2f414dc954bca2cd17f0bbabea11a8f18437eb417c6266d8c4750ba96957fc87_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:bf140f64657478a7f94bacd6784f7b7727d5df9ae8eb4c526f86d5533bff06ae_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d9c38fe43617f214fea848ef7124d77f30358e2049390fc3bd3526986ff9ebbb_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:fc251ea3c441bd0d3e358969fb6730bb9e53e340da9eff8bb6a173a37116c943_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1055afb10a6ce469d2c77337878f510b29375a830f14505042da8a6d6081c438_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:5df96c3b3dc8cdad2c8b42fd9378dc55779cdb11f64eea5fa653101505d4d497_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:7cb791603d9d7c8c1c8e5200f96401ad0fadc5db14ad698e7a9519d046d0fdd0_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:7488149277a76efe188086d283fa2acf732a4eca8bdeaa4de8744204876a77a2_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:b89943771e55457bd3765efd5f3e6e6697953ee9e5c7bd123921a274b79536d3_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:cf89aaa1ad0614707748c0ab0b26ee40855053b0f4932cd5edaa8ccf8b1470e7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2024:9885
Vulnerability from csaf_redhat
Published
2024-11-18 15:17
Modified
2025-10-08 15:44
Summary
Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0
Notes
Topic
Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate
Details
Red Hat Trusted Profile Analyzer 1.2.0
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Trusted Profile Analyzer 1.2.0 release Red Hat Product Security has rated this update as having a security impact of Moderate",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Trusted Profile Analyzer 1.2.0",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9885",
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1713",
"url": "https://issues.redhat.com/browse/TC-1713"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1721",
"url": "https://issues.redhat.com/browse/TC-1721"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1757",
"url": "https://issues.redhat.com/browse/TC-1757"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1769",
"url": "https://issues.redhat.com/browse/TC-1769"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1770",
"url": "https://issues.redhat.com/browse/TC-1770"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1799",
"url": "https://issues.redhat.com/browse/TC-1799"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1800",
"url": "https://issues.redhat.com/browse/TC-1800"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1801",
"url": "https://issues.redhat.com/browse/TC-1801"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1810",
"url": "https://issues.redhat.com/browse/TC-1810"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1815",
"url": "https://issues.redhat.com/browse/TC-1815"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1817",
"url": "https://issues.redhat.com/browse/TC-1817"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1818",
"url": "https://issues.redhat.com/browse/TC-1818"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1841",
"url": "https://issues.redhat.com/browse/TC-1841"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1842",
"url": "https://issues.redhat.com/browse/TC-1842"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1846",
"url": "https://issues.redhat.com/browse/TC-1846"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1847",
"url": "https://issues.redhat.com/browse/TC-1847"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1855",
"url": "https://issues.redhat.com/browse/TC-1855"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/TC-1857",
"url": "https://issues.redhat.com/browse/TC-1857"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index",
"url": "https://docs.redhat.com/en/documentation/red_hat_trusted_profile_analyzer/1.2/html/release_notes/index"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9885.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0",
"tracking": {
"current_release_date": "2025-10-08T15:44:57+00:00",
"generator": {
"date": "2025-10-08T15:44:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:9885",
"initial_release_date": "2024-11-18T15:17:19+00:00",
"revision_history": [
{
"date": "2024-11-18T15:17:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:51:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-08T15:44:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Trusted Profile Analyzer"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product_id": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhtpa-guac-rhel9@sha256%3A6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7?arch=amd64\u0026repository_url=registry.redhat.io/rhtpa\u0026tag=1.2.0-1730929100"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64 as a component of Red Hat Trusted Profile Analyzer 1.2",
"product_id": "Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
},
"product_reference": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64",
"relates_to_product_reference": "Red Hat Trusted Profile Analyzer 1.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T15:17:19+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-18T15:17:19+00:00",
"details": "It is recommended that existing users of RHTPA 1.1.2 upgrade to 1.2.0. There are significant changes to the data model. A migration utility is available to allow users to migrate from version 1.1.2 to 1.2.0. For more information please refer to the Release Notes.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Trusted Profile Analyzer 1.2:registry.redhat.io/rhtpa/rhtpa-guac-rhel9@sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
rhsa-2025:1249
Vulnerability from csaf_redhat
Published
2025-02-10 18:38
Modified
2025-10-31 12:52
Summary
Red Hat Security Advisory: updated discovery container images
Notes
Topic
Updated container images are now available for Discovery 1.12.
Details
The Discovery container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).
Dockerfiles and scripts should be amended either to refer to these new images specifically, or to the latest images generally.
Fixed CVEs:
CVE-2024-39338
CVE-2024-56201
CVE-2024-45590
CVE-2024-41991
CVE-2024-42005
CVE-2024-41989
CVE-2024-8775
CVE-2024-43799
CVE-2024-43796
CVE-2024-43800
CVE-2024-45296
CVE-2024-43788
CVE-2024-21536
CVE-2024-56326
CVE-2024-21538
CVE-2020-11023
CVE-2024-55565
CVE-2023-44270
CVE-2024-6485
CVE-2024-53907
CVE-2024-56374
CVE-2024-52798
CVE-2024-31449
CVE-2024-46981
CVE-2024-31228
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated container images are now available for Discovery 1.12.",
"title": "Topic"
},
{
"category": "general",
"text": "The Discovery container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to these new images specifically, or to the latest images generally.\n\nFixed CVEs:\nCVE-2024-39338\nCVE-2024-56201\nCVE-2024-45590\nCVE-2024-41991\nCVE-2024-42005\nCVE-2024-41989\nCVE-2024-8775\nCVE-2024-43799\nCVE-2024-43796\nCVE-2024-43800\nCVE-2024-45296\nCVE-2024-43788\nCVE-2024-21536\nCVE-2024-56326\nCVE-2024-21538\nCVE-2020-11023\nCVE-2024-55565\nCVE-2023-44270\nCVE-2024-6485\nCVE-2024-53907\nCVE-2024-56374\nCVE-2024-52798\nCVE-2024-31449\nCVE-2024-46981\nCVE-2024-31228",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:1249",
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "DISCOVERY-895",
"url": "https://issues.redhat.com/browse/DISCOVERY-895"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_1249.json"
}
],
"title": "Red Hat Security Advisory: updated discovery container images",
"tracking": {
"current_release_date": "2025-10-31T12:52:51+00:00",
"generator": {
"date": "2025-10-31T12:52:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:1249",
"initial_release_date": "2025-02-10T18:38:39+00:00",
"revision_history": [
{
"date": "2025-02-10T18:38:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-02-10T18:38:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:52:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Discovery 1 for RHEL 9",
"product": {
"name": "Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:discovery:1.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Discovery"
},
{
"branches": [
{
"category": "product_version",
"name": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"product": {
"name": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"product_id": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771?arch=amd64\u0026repository_url=registry.redhat.io/discovery/discovery-server-rhel9\u0026tag=1.12.0-1"
}
}
},
{
"category": "product_version",
"name": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64",
"product": {
"name": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64",
"product_id": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a?arch=amd64\u0026repository_url=registry.redhat.io/discovery/discovery-ui-rhel9\u0026tag=1.12.0-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"product": {
"name": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"product_id": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70?arch=arm64\u0026repository_url=registry.redhat.io/discovery/discovery-server-rhel9\u0026tag=1.12.0-1"
}
}
},
{
"category": "product_version",
"name": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"product": {
"name": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"product_id": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c?arch=arm64\u0026repository_url=registry.redhat.io/discovery/discovery-ui-rhel9\u0026tag=1.12.0-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64 as a component of Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64"
},
"product_reference": "discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"relates_to_product_reference": "9Base-discovery-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64 as a component of Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64"
},
"product_reference": "discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"relates_to_product_reference": "9Base-discovery-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64 as a component of Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64"
},
"product_reference": "discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"relates_to_product_reference": "9Base-discovery-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64 as a component of Discovery 1 for RHEL 9",
"product_id": "9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
},
"product_reference": "discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64",
"relates_to_product_reference": "9Base-discovery-1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-11023",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2020-06-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1850004"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jQuery. HTML containing \\\u003coption\\\u003e elements from untrusted sources are passed, even after sanitizing, to one of jQuery\u0027s DOM manipulation methods, which may execute untrusted code. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jquery: Untrusted code execution via \u003coption\u003e tag in HTML passed to DOM manipulation methods",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Enterprise Linux versions 6, 7, and 8 ship a vulnerable version of JQuery in the `pcs` component. As PCS does not accept untrusted input, the vulnerable code cannot be controlled by an attacker.\n\nMultiple Red Hat offerings use doxygen to build documentation. During this process an affected jquery.js file can be included in the resulting package. The \u0027gcc\u0027 and \u0027tbb\u0027 packages were potentially vulnerable via this method.\n\nOpenShift Container Platform 4 is not affected because even though it uses the \u0027gcc\u0027 component, vulnerable code is limited within the libstdc++-docs rpm package, which is not shipped.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nStatic code analysis controls ensure that security flaws, including XSS vulnerabilities, are detected early in development by scanning code for improper input handling. This prevents vulnerable code from reaching production and encourages our developers to follow secure coding practices. System monitoring controls play a crucial role in detecting and responding to XSS attacks by analyzing logs, monitoring user behavior, and generating alerts for suspicious activity. Meanwhile, AWS WAF (Web Application Firewall) adds an extra layer of defense by filtering and blocking malicious input before it reaches the platform and/or application. Together, these controls create a defense-in-depth approach, reducing the risk of XSS exploitation by preventing, detecting, and mitigating attacks at multiple levels.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-11023"
},
{
"category": "external",
"summary": "RHBZ#1850004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1850004"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-11023",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11023"
},
{
"category": "external",
"summary": "https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/",
"url": "https://blog.jquery.com/2020/04/10/jquery-3-5-0-released/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2020-04-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-01-23T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jquery: Untrusted code execution via \u003coption\u003e tag in HTML passed to DOM manipulation methods"
},
{
"cve": "CVE-2023-44270",
"cwe": {
"id": "CWE-93",
"name": "Improper Neutralization of CRLF Sequences (\u0027CRLF Injection\u0027)"
},
"discovery_date": "2024-11-18T14:11:50.400987+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2326998"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in PostCSS before 8.4.31. The vulnerability affects linters using PostCSS to parse external untrusted CSS. An attacker can prepare CSS in such a way that it will contains parts parsed by PostCSS as a CSS comment. After processing by PostCSS, it will be included in the PostCSS output in CSS nodes (rules, properties) despite being included in a comment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "PostCSS: Improper input validation in PostCSS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44270"
},
{
"category": "external",
"summary": "RHBZ#2326998",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2326998"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44270",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44270"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44270",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44270"
},
{
"category": "external",
"summary": "https://github.com/github/advisory-database/issues/2820",
"url": "https://github.com/github/advisory-database/issues/2820"
},
{
"category": "external",
"summary": "https://github.com/postcss/postcss/blob/main/lib/tokenize.js#L25",
"url": "https://github.com/postcss/postcss/blob/main/lib/tokenize.js#L25"
},
{
"category": "external",
"summary": "https://github.com/postcss/postcss/commit/58cc860b4c1707510c9cd1bc1fa30b423a9ad6c5",
"url": "https://github.com/postcss/postcss/commit/58cc860b4c1707510c9cd1bc1fa30b423a9ad6c5"
},
{
"category": "external",
"summary": "https://github.com/postcss/postcss/releases/tag/8.4.31",
"url": "https://github.com/postcss/postcss/releases/tag/8.4.31"
}
],
"release_date": "2023-09-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "There\u0027s no known mitigation for this issue. Red Hat recommends to not parse untrusted CSS input using PostCSS.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "PostCSS: Improper input validation in PostCSS"
},
{
"cve": "CVE-2024-6485",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-07-11T17:30:47+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2297388"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in bootstrap associated with the data-loading-text attribute within the button plugin. This vulnerability allows malicious JavaScript code to be injected into the attribute, which is then executed when the button\u0027s loading state is triggered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "bootstrap: Cross-Site Scripting via button plugin on bootstrap",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-6485"
},
{
"category": "external",
"summary": "RHBZ#2297388",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2297388"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-6485",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6485"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-6485",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6485"
},
{
"category": "external",
"summary": "https://www.herodevs.com/vulnerability-directory/cve-2024-6485",
"url": "https://www.herodevs.com/vulnerability-directory/cve-2024-6485"
}
],
"release_date": "2024-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "bootstrap: Cross-Site Scripting via button plugin on bootstrap"
},
{
"cve": "CVE-2024-8775",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2024-09-13T08:31:27.781000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312119"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Ansible, where sensitive information stored in Ansible Vault files can be exposed in plaintext during the execution of a playbook. This occurs when using tasks such as include_vars to load vaulted variables without setting the no_log: true parameter, resulting in sensitive data being printed in the playbook output or logs. This can lead to the unintentional disclosure of secrets like passwords or API keys, compromising security and potentially allowing unauthorized access or actions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ansible-core: Exposure of Sensitive Information in Ansible Vault Files Due to Improper Logging",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate rather than important because while it does expose sensitive information during playbook execution, the exposure is limited to logs and output generated during the run, which is typically accessible only to authorized users with sufficient privileges. The flaw does not result in an immediate or direct compromise of systems, as no remote exploitation vector is introduced. Additionally, the risk can be mitigated through proper configuration (`no_log: true`) and access control measures, reducing the likelihood of unauthorized access to the logged data. However, the unintentional disclosure of secrets like passwords or API keys still presents a potential risk for privilege escalation or lateral movement within an environment, justifying a moderate severity rating.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-8775"
},
{
"category": "external",
"summary": "RHBZ#2312119",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312119"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-8775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8775"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-8775",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-8775"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-jpxc-vmjf-9fcj",
"url": "https://github.com/advisories/GHSA-jpxc-vmjf-9fcj"
}
],
"release_date": "2024-09-13T08:35:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ansible-core: Exposure of Sensitive Information in Ansible Vault Files Due to Improper Logging"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-21538",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-11-08T13:44:29.182678+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2324550"
}
],
"notes": [
{
"category": "description",
"text": "A Regular Expression Denial of Service (ReDoS) vulnerability was found in the cross-spawn package for Node.js. Due to improper input sanitization, an attacker can increase CPU usage and crash the program with a large, specially crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cross-spawn: regular expression denial of service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21538"
},
{
"category": "external",
"summary": "RHBZ#2324550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2324550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21538"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/5ff3a07d9add449021d806e45c4168203aa833ff"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f",
"url": "https://github.com/moxystudio/node-cross-spawn/commit/640d391fde65388548601d95abedccc12943374f"
},
{
"category": "external",
"summary": "https://github.com/moxystudio/node-cross-spawn/pull/160",
"url": "https://github.com/moxystudio/node-cross-spawn/pull/160"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230",
"url": "https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230"
}
],
"release_date": "2024-11-08T05:00:04.695000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "cross-spawn: regular expression denial of service"
},
{
"cve": "CVE-2024-31228",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-10-07T20:01:32.319599+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2317058"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Redis. This flaw allows authenticated users to trigger a denial of service by using specially crafted, long string match patterns on supported commands such as `KEYS`, `SCAN`, `PSUBSCRIBE`, `FUNCTION LIST`, `COMMAND LIST`, and ACL definitions. Matching of extremely long patterns may result in unbounded recursion, leading to stack overflow and process crashes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redis: Denial-of-service due to unbounded pattern matching in Redis",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-31228"
},
{
"category": "external",
"summary": "RHBZ#2317058",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317058"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-31228",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31228"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-31228",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-31228"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/commit/9317bf64659b33166a943ec03d5d9b954e86afb0",
"url": "https://github.com/redis/redis/commit/9317bf64659b33166a943ec03d5d9b954e86afb0"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/security/advisories/GHSA-66gq-c942-6976",
"url": "https://github.com/redis/redis/security/advisories/GHSA-66gq-c942-6976"
}
],
"release_date": "2024-10-07T19:51:06.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "redis: Denial-of-service due to unbounded pattern matching in Redis"
},
{
"cve": "CVE-2024-31449",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-10-07T20:01:19.998028+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2317056"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Redis. This flaw allows an authenticated user to use a specially crafted Lua script to trigger a stack buffer overflow in the bit library, which may lead to remote code execution. The problem exists in all versions of Redis with Lua scripting.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redis: Lua library commands may lead to stack overflow and RCE in Redis",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-31449"
},
{
"category": "external",
"summary": "RHBZ#2317056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317056"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-31449",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-31449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-31449"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/commit/1f7c148be2cbacf7d50aa461c58b871e87cc5ed9",
"url": "https://github.com/redis/redis/commit/1f7c148be2cbacf7d50aa461c58b871e87cc5ed9"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/security/advisories/GHSA-whxg-wx83-85p5",
"url": "https://github.com/redis/redis/security/advisories/GHSA-whxg-wx83-85p5"
}
],
"release_date": "2024-10-07T19:51:08.775000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "redis: Lua library commands may lead to stack overflow and RCE in Redis"
},
{
"cve": "CVE-2024-39338",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"discovery_date": "2024-08-13T17:21:32.774718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2304369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Axios HTTP Client. It is vulnerable to a server-side request forgery attack (SSRF) caused by unexpected behavior where requests for path-relative URLs get processed as protocol-relative URLs. This flaw allows an attacker to perform arbitrary requests from the server, potentially accessing internal systems or exfiltrating sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: axios: Server-Side Request Forgery",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as IMPORTANT because it can be exploited remotely with low complexity and without user interaction, it poses a significant risk to confidentiality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39338"
},
{
"category": "external",
"summary": "RHBZ#2304369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases",
"url": "https://github.com/axios/axios/releases"
},
{
"category": "external",
"summary": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html",
"url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
}
],
"release_date": "2024-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: axios: Server-Side Request Forgery"
},
{
"cve": "CVE-2024-41989",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-08-02T01:40:06+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2302433"
}
],
"notes": [
{
"category": "description",
"text": "A security issue was found in Django. If \u0027floatformat\u0027 received a string representation of a number in scientific notation with a large exponent, it could lead to significant memory consumption. To avoid this, decimals with more than 200 digits are now returned as is.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-django: Memory exhaustion in django.utils.numberformat.floatformat()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is categorized as moderate severity rather than important because, while it has the potential to cause significant memory consumption under specific conditions, the likelihood of such a scenario occurring in typical applications is relatively low. The issue arises primarily when processing extremely large numbers in scientific notation, which is not a common use case in most Django applications. Additionally, the impact is localized to the floatformat function, and the issue does not expose sensitive data or compromise the integrity of the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41989"
},
{
"category": "external",
"summary": "RHBZ#2302433",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302433"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41989"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41989",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41989"
}
],
"release_date": "2024-08-06T13:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-django: Memory exhaustion in django.utils.numberformat.floatformat()"
},
{
"cve": "CVE-2024-41991",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-08-02T02:03:22+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2302435"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Django. \u0027urlize\u0027, \u0027urlizetrunc\u0027, and \u0027AdminURLFieldWidget\u0027 may be subject to a denial of service attack via certain inputs with a very large number of Unicode characters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-django: Potential denial-of-service vulnerability in django.utils.html.urlize() and AdminURLFieldWidget",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The identified vulnerability in Django\u0027s urlize, urlizetrunc template filters, and the AdminURLFieldWidget widget is classified as moderate severity rather than important due to its specific attack vector and impact. While the flaw allows for a potential denial-of-service (DoS) attack via inputs with a large number of Unicode characters, exploiting this vulnerability requires a significant volume of data to be processed by these components, which is a non-trivial task. Additionally, standard mitigation measures such as input validation, rate limiting, and monitoring can effectively reduce the risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41991"
},
{
"category": "external",
"summary": "RHBZ#2302435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302435"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41991",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41991"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41991",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41991"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2024/aug/06/security-releases/",
"url": "https://www.djangoproject.com/weblog/2024/aug/06/security-releases/"
}
],
"release_date": "2024-08-06T13:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-django: Potential denial-of-service vulnerability in django.utils.html.urlize() and AdminURLFieldWidget"
},
{
"cve": "CVE-2024-42005",
"cwe": {
"id": "CWE-89",
"name": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
},
"discovery_date": "2024-08-02T02:08:30+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2302436"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Django. The QuerySet.values() and QuerySet.values_list() methods on models with a JSONField were subject to SQL injection in column aliases via a crafted JSON object key as a passed *arg.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-django: Potential SQL injection in QuerySet.values() and values_list()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered of moderate severity rather than high or critical because it requires specific conditions to be exploitable. The potential for SQL injection exists only when QuerySet.values() or values_list() methods are used on models with a JSONField, and an attacker must have control over the JSON object keys passed as arguments. In typical use cases, these methods are often used with predefined or controlled data, limiting the attack surface. Furthermore, the impact is constrained to the manipulation of column aliases, rather than direct injection into more critical parts of the SQL query, reducing the overall risk compared to more direct forms of SQL injection vulnerabilities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-42005"
},
{
"category": "external",
"summary": "RHBZ#2302436",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302436"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-42005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42005"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-42005",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-42005"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2024/aug/06/security-releases/",
"url": "https://www.djangoproject.com/weblog/2024/aug/06/security-releases/"
}
],
"release_date": "2024-08-06T13:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-django: Potential SQL injection in QuerySet.values() and values_list()"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-46981",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-01-06T22:00:39.382359+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2336004"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Redis server. This flaw allows an authenticated user to use a specially crafted Lua script to manipulate the garbage collector, potentially leading to remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "redis: Redis\u0027 Lua library commands may lead to remote code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The problem exists in all versions of Redis with Lua scripting.\n\nThis vulnerability in Redis is classified as high severity rather than moderate due to its potential impact and exploitation scope. By manipulating the Lua garbage collector through crafted scripts, an authenticated attacker can achieve remote code execution (RCE), allowing them to execute arbitrary commands on the host system. This compromises not only the integrity and confidentiality of the data stored in Redis but also the underlying server itself. Furthermore, the exploitation does not require direct access to the server binary, making it feasible for attackers to execute through legitimate, albeit malicious, commands.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-46981"
},
{
"category": "external",
"summary": "RHBZ#2336004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2336004"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-46981",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46981"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-46981",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-46981"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/releases/tag/6.2.17",
"url": "https://github.com/redis/redis/releases/tag/6.2.17"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/releases/tag/7.2.7",
"url": "https://github.com/redis/redis/releases/tag/7.2.7"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/releases/tag/7.4.2",
"url": "https://github.com/redis/redis/releases/tag/7.4.2"
},
{
"category": "external",
"summary": "https://github.com/redis/redis/security/advisories/GHSA-39h2-x6c4-6w4c",
"url": "https://github.com/redis/redis/security/advisories/GHSA-39h2-x6c4-6w4c"
}
],
"release_date": "2025-01-06T21:11:51.687000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "A workaround to mitigate the problem without patching the redis-server executable is to prevent users from executing Lua scripts. This can be done using ACL to restrict EVAL and EVALSHA commands.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "redis: Redis\u0027 Lua library commands may lead to remote code execution"
},
{
"cve": "CVE-2024-52798",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-12-05T23:00:59.020167+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2330689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp. A path-to-regexp turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability exists because of an incomplete fix for CVE-2024-45296.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52798"
},
{
"category": "external",
"summary": "RHBZ#2330689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2330689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52798",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52798"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/f01c26a013b1889f0c217c643964513acf17f6a4",
"url": "https://github.com/pillarjs/path-to-regexp/commit/f01c26a013b1889f0c217c643964513acf17f6a4"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-rhx6-c78j-4q9w",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-rhx6-c78j-4q9w"
}
],
"release_date": "2024-12-05T22:45:42.774000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Avoid using two parameters within a single path segment when the separator is not, for example, /:a-:b. Alternatively, you can define the regex used for both parameters and ensure they do not overlap to allow backtracking.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x"
},
{
"cve": "CVE-2024-53907",
"cwe": {
"id": "CWE-1169",
"name": "CWE-1169"
},
"discovery_date": "2024-11-28T02:48:36.215000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2329288"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Django Web Framework. The strip_tags() and stripbtags template filter may be vulnerable to a potential denial of service (DoS) in cases of a large sequence of nested incomplete HTML entities.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "django: Potential denial-of-service in django.utils.html.strip_tags()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as a Moderate severity because it exposes the strip_tags() method and striptags template filter to a potential denial-of-service attack, malicious input containing large sequences of nested incomplete HTML entities could cause excessive processing, but it does not affect data confidentiality or integrity",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-53907"
},
{
"category": "external",
"summary": "RHBZ#2329288",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2329288"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-53907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53907"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-53907",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-53907"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2024/dec/04/security-releases/",
"url": "https://www.djangoproject.com/weblog/2024/dec/04/security-releases/"
}
],
"release_date": "2024-12-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "django: Potential denial-of-service in django.utils.html.strip_tags()"
},
{
"cve": "CVE-2024-55565",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-12-09T02:00:45.255738+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2331063"
}
],
"notes": [
{
"category": "description",
"text": "nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nanoid: nanoid mishandles non-integer values",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-55565"
},
{
"category": "external",
"summary": "RHBZ#2331063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2331063"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-55565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55565"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-55565"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8",
"url": "https://github.com/ai/nanoid/compare/3.3.7...3.3.8"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/pull/510",
"url": "https://github.com/ai/nanoid/pull/510"
},
{
"category": "external",
"summary": "https://github.com/ai/nanoid/releases/tag/5.0.9",
"url": "https://github.com/ai/nanoid/releases/tag/5.0.9"
}
],
"release_date": "2024-12-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nanoid: nanoid mishandles non-integer values"
},
{
"cve": "CVE-2024-56201",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2024-12-23T16:00:38.768252+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333854"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Jinja2 package. A bug in the Jinja compiler allows an attacker that controls both the content and filename of a template to execute arbitrary Python code, regardless of Jinja\u0027s sandbox being used. An attacker needs to be able to control both the filename and the contents of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates where the template author can also choose the template filename.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jinja2: Jinja has a sandbox breakout through malicious filenames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has rated as a IMPORTANT flaw because an attacker controlling both the template content and filename to execute arbitrary Python code, bypassing the sandbox.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-56201"
},
{
"category": "external",
"summary": "RHBZ#2333854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-56201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56201"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56201",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56201"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f",
"url": "https://github.com/pallets/jinja/commit/767b23617628419ae3709ccfb02f9602ae9fe51f"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/issues/1792",
"url": "https://github.com/pallets/jinja/issues/1792"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/releases/tag/3.1.5",
"url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699",
"url": "https://github.com/pallets/jinja/security/advisories/GHSA-gmj6-6f8f-6699"
}
],
"release_date": "2024-12-23T15:37:36.110000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
},
{
"category": "workaround",
"details": "To mitigate this vulnerabilty restrict user-controlled template filenames, ensuring they follow a predefined templates.",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jinja2: Jinja has a sandbox breakout through malicious filenames"
},
{
"cve": "CVE-2024-56326",
"cwe": {
"id": "CWE-693",
"name": "Protection Mechanism Failure"
},
"discovery_date": "2024-12-23T16:00:46.619763+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333856"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to control the content of a template. Whether that is the case depends on the type of application using Jinja. This vulnerability impacts users of applications that execute untrusted templates. Jinja\u0027s sandbox does catch calls to str.format and ensures they don\u0027t escape the sandbox. However, storing a reference to a malicious string\u0027s format method is possible, then passing that to a filter that calls it. No such filters are built into Jinja but could be present through custom filters in an application. After the fix, such indirect calls are also handled by the sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jinja2: Jinja has a sandbox breakout through indirect reference to format method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as Moderate due to an oversight in Jinja\u0027s sandbox environment, allowing attackers to execute arbitrary Python code through controlled template content. This requires control over template content, making exploitation possible only in specific applications, thus limiting its overall impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-56326"
},
{
"category": "external",
"summary": "RHBZ#2333856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-56326",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56326"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56326",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56326"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4",
"url": "https://github.com/pallets/jinja/commit/48b0687e05a5466a91cd5812d604fa37ad0943b4"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/releases/tag/3.1.5",
"url": "https://github.com/pallets/jinja/releases/tag/3.1.5"
},
{
"category": "external",
"summary": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h",
"url": "https://github.com/pallets/jinja/security/advisories/GHSA-q2x7-8rv6-6q7h"
}
],
"release_date": "2024-12-23T15:43:49.400000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jinja2: Jinja has a sandbox breakout through indirect reference to format method"
},
{
"cve": "CVE-2024-56374",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-01-14T20:01:09.167282+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2337996"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Django framework. Lack of upper bound limit enforcement in strings passed when performing IPv6 validation could lead to a potential denial of service attack. The undocumented and private functions `clean_ipv6_address` and `is_valid_ipv6_address` were vulnerable, as was the `django.forms.GenericIPAddressField` form field, which has now been updated to define a `max_length` of 39 characters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "django: potential denial-of-service vulnerability in IPv6 validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-770: Allocation of Resources Without Limits or Throttling vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings required for operations, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect excessive resource usage caused by malicious activity or system misconfigurations. In the event of exploitation, process isolation ensures workloads operate in separate environments, preventing any single process from overconsuming CPU or memory and degrading system performance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-56374"
},
{
"category": "external",
"summary": "RHBZ#2337996",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337996"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-56374",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56374"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-56374",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-56374"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2025/01/14/2",
"url": "http://www.openwall.com/lists/oss-security/2025/01/14/2"
},
{
"category": "external",
"summary": "https://docs.djangoproject.com/en/dev/releases/security/",
"url": "https://docs.djangoproject.com/en/dev/releases/security/"
},
{
"category": "external",
"summary": "https://groups.google.com/g/django-announce",
"url": "https://groups.google.com/g/django-announce"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2025/jan/14/security-releases/",
"url": "https://www.djangoproject.com/weblog/2025/jan/14/security-releases/"
}
],
"release_date": "2025-01-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-02-10T18:38:39+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:b41eeb83e5c7ad9937a90ac6247fe5305a7ff90b39ae6a23765e0f2e22bdca70_arm64",
"9Base-discovery-1:discovery/discovery-server-rhel9@sha256:c6488740a778ca3a1aa3dfdc513d4989ac366728d9f93fe8a57a51c562270771_amd64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c5a4ba16f7322e2b89fefa198dc673434f73709a47cf7a85bbccf1ba7a73dd7c_arm64",
"9Base-discovery-1:discovery/discovery-ui-rhel9@sha256:c6f7be7cb58e77958c518fdd68c80a745dcec48fa5397af8c68593254e03743a_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "django: potential denial-of-service vulnerability in IPv6 validation"
}
]
}
rhsa-2025:8059
Vulnerability from csaf_redhat
Published
2025-05-21 06:13
Modified
2025-10-31 12:53
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.7 Bug Fix Update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.17.7 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.17.7 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:8059",
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "DFBUGS-1033",
"url": "https://issues.redhat.com/browse/DFBUGS-1033"
},
{
"category": "external",
"summary": "DFBUGS-1701",
"url": "https://issues.redhat.com/browse/DFBUGS-1701"
},
{
"category": "external",
"summary": "DFBUGS-331",
"url": "https://issues.redhat.com/browse/DFBUGS-331"
},
{
"category": "external",
"summary": "DFBUGS-530",
"url": "https://issues.redhat.com/browse/DFBUGS-530"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_8059.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.7 Bug Fix Update",
"tracking": {
"current_release_date": "2025-10-31T12:53:39+00:00",
"generator": {
"date": "2025-10-31T12:53:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:8059",
"initial_release_date": "2025-05-21T06:13:16+00:00",
"revision_history": [
{
"date": "2025-05-21T06:13:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-21T06:13:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:53:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.17 for RHEL 9",
"product": {
"name": "RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"product_id": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.7-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"product_id": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.7-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"product": {
"name": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"product_id": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.17.7-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.17.7-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"product": {
"name": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"product_id": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07?arch=arm64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.17.7-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.17.7-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.17.7-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64"
},
"product_reference": "odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x"
},
"product_reference": "odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64 as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x as a component of RHODF 4.17 for RHEL 9",
"product_id": "9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x",
"relates_to_product_reference": "9Base-RHODF-4.17"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11831",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-16T16:43:32.021000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312579"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascript module does not properly sanitize certain inputs, such as regex or other JavaScript object types, allowing an attacker to inject malicious code. This code could be executed when deserialized by a web browser, causing Cross-site scripting (XSS) attacks. This issue is critical in environments where serialized data is sent to web clients, potentially compromising the security of the website or web application using this package.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-11831"
},
{
"category": "external",
"summary": "RHBZ#2312579",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312579"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-11831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11831"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-11831"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e",
"url": "https://github.com/yahoo/serialize-javascript/commit/f27d65d3de42affe2aac14607066c293891cec4e"
},
{
"category": "external",
"summary": "https://github.com/yahoo/serialize-javascript/pull/173",
"url": "https://github.com/yahoo/serialize-javascript/pull/173"
}
],
"release_date": "2024-09-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript"
},
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Upstream versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in upstream version 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.\n\nUpstream versions should not be relied upon for ultimate determination of affectedness. Red Hat might backport fixes from upstream versions on a case by case basis.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-39249",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-07-01T20:20:32+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295035"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the async Node.js package. A Regular expression Denial of Service (ReDoS) attack can potentially be triggered via the autoinject function while parsing specially crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-async: Regular expression denial of service while parsing function in autoinject",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39249"
},
{
"category": "external",
"summary": "RHBZ#2295035",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295035"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39249",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39249"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39249"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L41"
},
{
"category": "external",
"summary": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6",
"url": "https://github.com/caolan/async/blob/v3.2.5/lib/autoInject.js#L6"
},
{
"category": "external",
"summary": "https://github.com/zunak/CVE-2024-39249",
"url": "https://github.com/zunak/CVE-2024-39249"
}
],
"release_date": "2024-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-async: Regular expression denial of service while parsing function in autoinject"
},
{
"cve": "CVE-2024-45338",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2024-12-18T21:00:59.938173+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2333122"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/net/html. This flaw allows an attacker to craft input to the parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This issue can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as an Important severity because an attacker can craft malicious input that causes the parsing functions to process data non-linearly, resulting in significant delays which leads to a denial of service by exhausting system resources.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45338"
},
{
"category": "external",
"summary": "RHBZ#2333122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2333122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45338"
},
{
"category": "external",
"summary": "https://go.dev/cl/637536",
"url": "https://go.dev/cl/637536"
},
{
"category": "external",
"summary": "https://go.dev/issue/70906",
"url": "https://go.dev/issue/70906"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ",
"url": "https://groups.google.com/g/golang-announce/c/wSCRmFnNmPA/m/Lvcd0mRMAwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3333",
"url": "https://pkg.go.dev/vuln/GO-2024-3333"
}
],
"release_date": "2024-12-18T20:38:22.660000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2025-27144",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-02-24T23:00:42.448432+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2347423"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GO-JOSE. In affected versions, when parsing compact JWS or JWE input, Go JOSE could use excessive memory. The code uses strings.Split(token, \".\") to split JWT tokens, which is vulnerable to excessive memory consumption when processing maliciously crafted tokens with a large number of `.` characters. This issue could be exploied by sending numerous malformed tokens, leading to memory exhaustion and a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-770: Allocation of Resources Without Limits or Throttling vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings required for operations, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect excessive resource usage caused by malicious activity or system misconfigurations. In the event of exploitation, process isolation ensures workloads operate in separate environments, preventing any single process from overconsuming CPU or memory and degrading system performance.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27144"
},
{
"category": "external",
"summary": "RHBZ#2347423",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2347423"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27144"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27144"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22",
"url": "https://github.com/go-jose/go-jose/commit/99b346cec4e86d102284642c5dcbe9bb0cacfc22"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5",
"url": "https://github.com/go-jose/go-jose/releases/tag/v4.0.5"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c6gw-w398-hv78"
}
],
"release_date": "2025-02-24T22:22:22.863000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "As a workaround, applications can pre-validate that payloads being passed to Go JOSE do not contain an excessive number of `.` characters.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-jose: Go JOSE\u0027s Parsing Vulnerable to Denial of Service"
},
{
"cve": "CVE-2025-30204",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2025-03-21T22:00:43.818367+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2354195"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the golang-jwt implementation of JSON Web Tokens (JWT). In affected versions, a malicious request with specially crafted Authorization header data may trigger an excessive consumption of resources on the host system. This issue can cause significant performance degradation or an application crash, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-30204"
},
{
"category": "external",
"summary": "RHBZ#2354195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2354195"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-30204"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3",
"url": "https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3"
},
{
"category": "external",
"summary": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp",
"url": "https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-3553",
"url": "https://pkg.go.dev/vuln/GO-2025-3553"
}
],
"release_date": "2025-03-21T21:42:01.382000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-21T06:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:8059"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have a recommended mitigation at this time.",
"product_ids": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:054998fd15c2cf2a1c3c0e9504454d7c43a6d94262fba5065863ef0958a409a8_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:c1677dbbb7ee7701b8476a8eda19d6ca3904e9ef540e556f16e2d28dd42b1171_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-operator-bundle@sha256:f9e4141c82beefac763806e9273f88aa4755a74bf1c16dc159da24e07ca9f2f7_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:43f235db4b408d9a982785dcfe9b8f1ce928ed06f0fc6e3c3f387b0fe6903d07_arm64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:62603af81e9a59f83e43f6139ba011790038bf014ab21e34c7242022c39134b8_amd64",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:ae638e2bff525834cfef15c2553abd8179b86aec85793a629a4437a5d18f0d48_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9-operator@sha256:b3b261767992f861adf1bd822c3ab525f4cb3c7d1193d4cc11d810570c0e0976_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:06d90010f3b9c8c590d096540683c70f0835ba39e62af56d53eb7ce68c0e7021_s390x",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:73bee594a7946507616dc374146267793c1b1e0d0709fdb16a412f4987aff9fe_ppc64le",
"9Base-RHODF-4.17:odf4/cephcsi-rhel9@sha256:cb44f70c8c18e59eb60a11357a92fe0fc6603af554060f3af88adcd6a1b41434_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:6b0e693ff985284abf9543ae6b97434e71a8bfdcc5bfe6de450bab0b06ac06cf_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:dc976291ad97421bf141bec1bda2c89029a3af259af61ce3584900deb8e20f2e_arm64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:df60ea95badf704367af6d12bc5377639dc97528e384e038cfeae18855b0e239_amd64",
"9Base-RHODF-4.17:odf4/mcg-core-rhel9@sha256:e469c586c527596f7b4b95866a570d6cd33924c65c13197cba13abd108c92e91_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:ede056376a353ee3964397edb8c6ba0ed6badac7576840ab6d94a3ed7f363945_s390x",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:f841e5afef6d9bbfd93d0071d69e3ea3cc61324cea418e166b1a5d281be6c72c_amd64",
"9Base-RHODF-4.17:odf4/mcg-operator-bundle@sha256:fea993c67e40de82b11425ff134b24503893cbb0d5a818842669840a3e7ef368_ppc64le",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:200cd576a84341e6c09768497950e94902f6b4d43cfd7a043bd688d98a808a28_arm64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:38666a99ebb56e03c0a36ef9a0fbb927989a4c96445f623a01092984297c65d2_s390x",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:e699f2e34d744caddb9201ab96328779f4c4db79be51991af6d50f584f7ccf7b_amd64",
"9Base-RHODF-4.17:odf4/mcg-rhel9-operator@sha256:f3b2fae6d95b5b6fa09ccec1d86972809d088957c8bf22eeaa8d12465ac0cf07_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:915aca5ab56bd1ad742c48994a2fa77901b44eb28c4d4b28c1a4b311b71546bf_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:cfe84ea69c98c40e73077dd701573b4ea01b6030139352dd0c6d723bf1a836aa_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-console-rhel9@sha256:f7bbdadf6cb5c57529c89d6b7a2cc94847761d9d582bf189c6b900823c003097_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:09331c0de3ee129dd1ff47253c9249379390a0f668c4954f8a3993e9cc64637d_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:0df50e804697c92388335dbcdfe8692182d8823b4e163bbdad678ed4521d89bc_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-operator-bundle@sha256:f2310986e2272bd5ea7134646442472d9b8ca6c65287c9fe169a10e2b5a588b6_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1376f5e8543fbbf6badf4f7b7443dc9c9d35e782a059cea5ecdbe712d4d820fa_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:1b32f5ed12d9ab9c14e7875f0cc12ed0e1e174085d90035ae7a2cd6d6d17a255_amd64",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:2855724c3b87fe43cfb2648a79b4d1437f37d413bbee51ae86f2308be2932fcd_s390x",
"9Base-RHODF-4.17:odf4/ocs-client-rhel9-operator@sha256:37f6fe72819ba10470d07de2c79cdee820e33ac4c8dd861d31cface831415cb3_arm64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:2b857bceeecaffa628ca61389b660d11124d7a29be676739ce42c35849b0719d_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:4ec2b1ff05211fae0712ffee51a845fe566d8ccdc348b26908a33bbd0891366f_amd64",
"9Base-RHODF-4.17:odf4/ocs-metrics-exporter-rhel9@sha256:cab7af3d74bea3fff4474f9e511b433cdc3d7a2c0eff56297e54579fc1cb34b8_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:c4ed26ccde47e89db129e662dd260e6def330312a8944945a9575f60dd0d1a68_s390x",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:ecb7e9bf935874a5c1bf4666610c079c08c89ecc0ea5a1fefafd35c53ae66d53_amd64",
"9Base-RHODF-4.17:odf4/ocs-operator-bundle@sha256:f8ab5a07aa6fd9c4a5c71f16a3a0ca052956aed8108af93e944c7fff117399ec_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:6a71b0e7f8497dd2cd66627b43b7d76c215d66dd4e012726277bf4e2bb39c203_ppc64le",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:a5fa9f56f7b2e586677bbf76bc5515d0ecda00e39b182d3c0def1a9fafe14cd5_s390x",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:dca55a978d3431e286a8f7d51a210cdb6bf53eeccd0df7341c9450ee6b9378c9_amd64",
"9Base-RHODF-4.17:odf4/ocs-rhel9-operator@sha256:fc319350c3415a26d2b31c17e57c730e4f124410dd1001af0196f8bf2e3b8961_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:4a9cda4ed74970b463c9bed6c49b5e742893838cabc1b9f8283995276a5c3f88_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:6ddd7213207830184840d43b8d479f5130b6d7366e96a5e17eb32241bff549ba_amd64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:7b1b858ac50598c5b19a485394e4a87cd0398b4b25c77a2e5a60573006bd6077_arm64",
"9Base-RHODF-4.17:odf4/odf-cli-rhel9@sha256:b8f7ed3a76740b722e1740e2050d1dd0da98ead5680db88b69b23c951ac51c41_s390x",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:04dafbebbbc0be0f0d25e78ba4279cd69a0e16b876a02e508166b55fee8304f3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:2da36108b84b2cb69dcd28f500795fd276f43489574a6877f4464cf28b4d12e1_amd64",
"9Base-RHODF-4.17:odf4/odf-console-rhel9@sha256:77fd51729a7e0f0b3e4dc8d40045eaeaee125ab1a87dfee0b94efa8740b1cb8c_s390x",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:94b5383c327656f69e399259b64470ea48b59964aa74d3a9ffc37f66518a3396_ppc64le",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:c88ad5b574e1c2c48759e98cfef4c8b73508e5c72b2fc2fa37492d0ca0e1f276_amd64",
"9Base-RHODF-4.17:odf4/odf-cosi-sidecar-rhel9@sha256:d489c031582ae1fb526caa2bb646ee7d172f4012f26fdfe60e041c3bcb9bbbf6_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:6224b0d5762cb8f3b2b08dc6d6f88393e37de2bdcb8e848db52fbb35cee8f2b9_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:aad938393076489072d9732be70b6d005123022e55ec5b42b757a2de7ae41a25_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-operator-bundle@sha256:e35b0b19755474793221ebb014592b31e7165e7e17da9ca21d0e150a053969a3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:31b0c3e4f1b484c70c65cd8d8b75575ea5dc12296611d22926bdf35b70ec2b79_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:38ab00055c745e95ead1202254d637620b9745240543b4a098dda6df00313c19_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:3a4296a0c2f0497a0043d76998c552cdd9cb609c6ceb3981c51399d85fa730d8_s390x",
"9Base-RHODF-4.17:odf4/odf-csi-addons-rhel9-operator@sha256:b7aeeb5d18b6ac57bcec089f809abaddc6470643bf86b82a8b36edc89a00cc92_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:52c6f97500f147c1eee8d0c16a63e6ab8f115d1085b08f4981f482bbc38317c3_ppc64le",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:9f1b9b415afa38d2f4b5d89f0d92bad080cd8a750a0d1a9741ef85120f2ed77e_arm64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:e244a4a7ea3d67120101692138394c42fb3ed833b76a50564ce5ccc87fb2757e_amd64",
"9Base-RHODF-4.17:odf4/odf-csi-addons-sidecar-rhel9@sha256:ee2d70f290b5183bc6fc6508161c1eafd8445f721fb3c11df410676030f15873_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:006c04439acff3f14f8182730456544d509c563082e493c5e418e24f6bf23e89_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:48d2d63d19d13d61bdf90a65d8f8e10d009b02ee399b6f3ebc43e655eb4de1d2_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-console-rhel9@sha256:60e6e94d60553fc82613082f762ec03d1051c775277879b69679752e0ba43e7f_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:4384eeb731eef228888e3594cd8bd3d4fd5ef4342c3aa7b13213f9ef35565a4b_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:7d23992b1a8771e3181f14ccd0451013c110f17fc5fd2979d48ea5699629502b_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-operator-bundle@sha256:8fdf1f0c57828817f7d66da25859af4724f159d64b8cc66f173862543bb04fd9_ppc64le",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:27e60521d3fde9da89d975fdce09a5434ddf75c81eda4b4eb74b80111b2b0063_arm64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:305e7528ca3a9ee468363991b7a7b7ce15caeb31335e88287e0a69074fb2c107_amd64",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:935e995db971f4c506789759b9717dcb0f428700b39478d8b99bc83d056e809c_s390x",
"9Base-RHODF-4.17:odf4/odf-multicluster-rhel9-operator@sha256:fe623a687bce7aa5c6005dbd34a688fae2173777b72ff20655577faa4e6d4645_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:08908f8cfa5214057db1b7c809dce27ad4361fdd11ac229cc702e877ed1ab3f8_amd64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:56e0dc7cc7730150fa89935eab804a838605d9ebb7aabdceac5e5ba6a5f3f54a_arm64",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:87ec5cb1566e2aed683248e452b8c95644fe4850cb37b3e64ae6457240508cfa_ppc64le",
"9Base-RHODF-4.17:odf4/odf-must-gather-rhel9@sha256:fde216f5003db3b215770392e1feb0220e9bab0f1b7c81a2173810a619b43fd4_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:4d0675bd623820f272187648545ecb01f2f9d28d42c79f9754698dd5733b745d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:9c19a7f1cefa01e8deb22a7d56a7c57a13cbf32adb3ce4154fe9743e841dfc65_s390x",
"9Base-RHODF-4.17:odf4/odf-operator-bundle@sha256:a8213856ded71c65efeccb303439eb2c8f8f4e68043d26f0b6d243c0bee27b63_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:da842866d1cd073accf091a2ba6f5d0c55a95edc199b713aafe2c0a2471a8a03_amd64",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:ec619ef29687da4506ddbb522328953acbf1d36f842509bc46eac49c87440d98_s390x",
"9Base-RHODF-4.17:odf4/odf-prometheus-operator-bundle@sha256:efe92fd0b68ecdcd626fdffb7f69b252a277c3b6c82ed89b8e1f2e121b3f277d_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:088d8f6216f9d13d2e27b2da999d3a109de67522cc4bfff86497286897100dee_s390x",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:268e0b34e1d2efd38236796c14dee68aa98d9e29c187fbb278c2e4ef9ea68834_arm64",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:d1ab370bb12f0fd581f2b541e9067a066e64c90164105ffc01231171108ed5e1_ppc64le",
"9Base-RHODF-4.17:odf4/odf-rhel9-operator@sha256:fc7b9a76aac515ca1543d1541e8b365427b9914b3c2d9db9e9aa3e7c4e4cc98c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:061b672a1c521e740485ca09e9c48e7a4af79593350da2b4a624015fb46407c9_ppc64le",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:4b2048dce6492bb93ed7487c7b0f8a146c885217d6665e83ac21c64f21e4be4c_amd64",
"9Base-RHODF-4.17:odf4/odr-cluster-operator-bundle@sha256:f91c0bea8a3d5f06cb48109a94b7bec906e51f6b312682319eef89255442b97e_s390x",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:1bc8174656245c3815c265f42679f96bba339276189e3f0d35d9f72fb68dbfcc_amd64",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:8570405c41c53ae312171e1e0cd15ce2bb81ae0dbfc8559a0d049bf0b4def097_ppc64le",
"9Base-RHODF-4.17:odf4/odr-hub-operator-bundle@sha256:879e254a1ba73490a25c3e76d65dfb4bee35dea13e49730ee0f412aa4e555a29_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:4ff5f4030320f678e80e65538d8be0905142d15b38ec9c45d4af5c6688fa7fe7_s390x",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:79cfcac217861d060706478e5ab777bdb10eeb9e5680e4d5f192287d9e82cb2b_ppc64le",
"9Base-RHODF-4.17:odf4/odr-recipe-operator-bundle@sha256:9aee5992d14243914ac690d92a3c83d083188b25785a5109aed68fb4d1631113_amd64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:57f4d2791ab4f1bbad865e6909a154a03dcf0342c8a6fc5c320ed6782fe5aca9_arm64",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:5b63ca73de56022ef1dd26fa972cb4c4d9290b44e882f1378efa3e735bd7b5dd_ppc64le",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:d0e08d170c6092d2aa714eeae268d808ddf7a54f32b5942bed0b6921b751a50c_s390x",
"9Base-RHODF-4.17:odf4/odr-rhel9-operator@sha256:da6d8d66ad65e4b9e63121075622c1113d8299e2794da7ceca3f5cdc9eb14ade_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:1549bcaa9951490ce289053601c40b1c1c95660fdcc9fac91ec6b6d0242d8287_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:3f6dd30980a995b323e81c5be6f06c083c2be800e91cb9ffc64ef6d4e3f21468_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-operator-bundle@sha256:6ed1b6f45787db651b56ea849df6da14e763d475b86136a17b2fb49314a111eb_s390x",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:1ed983176d810607025f92b304d1ae322939ad53d4c49e93c651c7ed79bb6493_amd64",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:48a0203d4623d19fd3771e3ab495a616ea4a168e43fbdec6495117e0513f21e6_ppc64le",
"9Base-RHODF-4.17:odf4/rook-ceph-rhel9-operator@sha256:f1669a9902b3db98f4012d18540fee4404a1375f70854f8f100a38c6cf5aed80_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing"
}
]
}
RHSA-2024:7725
Vulnerability from csaf_redhat
Published
2024-10-07 09:24
Modified
2025-10-31 12:41
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.5
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.5.5
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule
(CVE-2024-43788)
* envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode (CVE-2024-23326)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* envoy: Brotli decompressor infinite loop (CVE-2024-32976)
* envoy: abnormal termination when using auto_sni with authority header longer
than 255 characters (CVE-2024-32475)
* envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood (CVE-2024-30255)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.5.5\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a\ndetailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule\n(CVE-2024-43788)\n* envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode (CVE-2024-23326)\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* envoy: Brotli decompressor infinite loop (CVE-2024-32976)\n* envoy: abnormal termination when using auto_sni with authority header longer\nthan 255 characters (CVE-2024-32475)\n* envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood (CVE-2024-30255)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7725",
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2259228",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259228"
},
{
"category": "external",
"summary": "2272986",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272986"
},
{
"category": "external",
"summary": "2276149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276149"
},
{
"category": "external",
"summary": "2283145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283145"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7725.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.5",
"tracking": {
"current_release_date": "2025-10-31T12:41:54+00:00",
"generator": {
"date": "2025-10-31T12:41:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:7725",
"initial_release_date": "2024-10-07T09:24:53+00:00",
"revision_history": [
{
"date": "2024-10-07T09:24:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-07T09:24:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:41:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.5 for RHEL 8",
"product": {
"name": "RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.5::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.73.14-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.5.5-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.73.15-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.5.5-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.5.5-6"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.5.5-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64 as a component of RHOSSM 2.5 for RHEL 8",
"product_id": "8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-23326",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2024-01-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2259228"
}
],
"notes": [
{
"category": "description",
"text": "A possible request smuggling vulnerability exists through Envoy. This issue occurs if a server can be tricked into adding an upgrade header into a response.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-23326"
},
{
"category": "external",
"summary": "RHBZ#2259228",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259228"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-23326",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23326"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-23326",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23326"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-vcf8-7238-v74c",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-vcf8-7238-v74c"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode"
},
{
"acknowledgments": [
{
"names": [
"Bartek Nowotarski"
],
"organization": "nowotarski.info"
}
],
"cve": "CVE-2024-30255",
"cwe": {
"id": "CWE-390",
"name": "Detection of Error Condition Without Action"
},
"discovery_date": "2024-04-02T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2272986"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in how Envoy Proxy implements the HTTP/2 codec. There are insufficient limitations placed on the amount of CONTINUATION frames that can be sent within a single stream. This issue could allow an unauthenticated remote attacker to send packets to vulnerable servers, which could use up compute resources to cause a Denial of Service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates the security impact of this vulnerability as Moderate, in alignment with upstream Envoy. The worst case scenario is excessive CPU utilization causing a denial of service. Once an attack has ended, the system should return to normal operations on its own.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-30255"
},
{
"category": "external",
"summary": "RHBZ#2272986",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272986"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-30255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30255"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-30255",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-30255"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-j654-3ccm-vfmm",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-j654-3ccm-vfmm"
},
{
"category": "external",
"summary": "https://nowotarski.info/http2-continuation-flood/",
"url": "https://nowotarski.info/http2-continuation-flood/"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/421644",
"url": "https://www.kb.cert.org/vuls/id/421644"
}
],
"release_date": "2024-04-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: HTTP/2 CPU exhaustion due to CONTINUATION frame flood"
},
{
"cve": "CVE-2024-32475",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"discovery_date": "2024-04-19T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276149"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy, a cloud-native, open source edge and service proxy. When an upstream TLS cluster is used with \"auto_sni\" enabled, a request containing a \"host/:authority\" header longer than 255 characters triggers an abnormal termination of the Envoy process, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: abnormal termination when using auto_sni with authority header longer than 255 characters",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32475"
},
{
"category": "external",
"summary": "RHBZ#2276149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32475",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32475"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32475",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32475"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/commit/b47fc6648d7c2dfe0093a601d44cb704b7bad382",
"url": "https://github.com/envoyproxy/envoy/commit/b47fc6648d7c2dfe0093a601d44cb704b7bad382"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-3mh5-6q8v-25wj",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-3mh5-6q8v-25wj"
}
],
"release_date": "2024-04-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "envoy: abnormal termination when using auto_sni with authority header longer than 255 characters"
},
{
"cve": "CVE-2024-32976",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-05-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2283145"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy\u0027s Brotli decompressor. This flaw allows a remote, unauthenticated attacker to trigger an infinite loop, causing a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Brotli decompressor infinite loop",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32976"
},
{
"category": "external",
"summary": "RHBZ#2283145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32976",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32976"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32976",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32976"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-7wp5-c2vq-4f8m",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-7wp5-c2vq-4f8m"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "envoy: Brotli decompressor infinite loop"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"acknowledgments": [
{
"names": [
"Mike Whale"
]
},
{
"names": [
"James Force"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2024-45806",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2024-09-20T00:40:20.976812+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313683"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Envoy that allows external clients to manipulate Envoy headers, potentially leading to unauthorized access or other malicious actions within the mesh. This issue arises due to Envoy\u0027s default configuration of internal trust boundaries, which considers all RFC1918 private address ranges as internal. The default behavior for handling internal addresses in Envoy has been changed. Previously, RFC1918 IP addresses were automatically considered internal, even if the internal_address_config was empty. The default configuration of Envoy will continue to trust internal addresses while in this release and it will not trust them by default in next release. If you have tooling such as probes on your private network which need to be treated as trusted such as changing arbitrary x-envoy headers, please explicitly include those addresses or CIDR ranges into `internal_address_config`. Successful exploitation could allow attackers to bypass security controls, access sensitive data, or disrupt services within the mesh, like Istio.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Potential to manipulate `x-envoy` headers from external sources",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat\u0027s CVSS score and impact are specific to our product and may not match those of upstream. This is due to how envoy is configured and used within our OpenShift Service Mesh product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45806"
},
{
"category": "external",
"summary": "RHBZ#2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45806"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf"
}
],
"release_date": "2024-09-20T00:15:02.293000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:53+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7725"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by configuring envoy to treat all IPs as external. This is done by setting the internal_address_config range for envoy to `0.0.0.0/32`.",
"product_ids": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:807b8705bdd289e7c538dad646cdb00619b60a547faabfc4462beb3669c9593b_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:c03cbaf1d6e8abd5f43bfa059359bd3da0e5ae0a5b4434f3d56eedceb238761c_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:f18469f64f1c87b3e9186db6a955f0063197d45781a570a31102ae0d23fff5b8_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/grafana-rhel8@sha256:fdbac779cb1568b0eb9bc7a8f194a446583b08fa68f7d5f1dcd3ba31d4e2c14f_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:2784045844231bcd2212f84d0ae05aace9b8e0fe31ce5c3a49c1e865d9b6f7b4_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:40c8bfb02b7078d04f115fcd4894cc4f4b452f1e192afac3fe2db2f9249eca42_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:58dc105a4b89b8eed3892f577595577f3972431e81636609218bd87d300ec662_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-cni-rhel8@sha256:aee0aa13cd55c4dbebde559f90123c575a222bff48cef4a29d57efcca3ec3831_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:0e4a75f9a16266a79814f42f1ac475fe426b6720c52daa98df594a979a1e727d_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:597475e28f081bd14755ca909fceb2dd1c01c6a3d1b7e1b6f89739c1206c7f9b_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:913b90b39c5f78b328c202630f43f41daa8ba1e132411679a1dc655f3992b265_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/istio-must-gather-rhel8@sha256:a14488ddf9859b13676abb82bbc9925e3b65baedbeff46657c4754c9486e14d9_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:013dda8dba6f8aab89e4a10e4289362751dd14d01704604199ba36c29316c10c_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:b17bed92b891131e3bed248ff4fa8329e6802cbcc6b07aac240cf8f95e6fa48b_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:ce420c9b076a15d91c9e62000d4129911d54db27a4c91913e384eb284557edae_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-ossmc-rhel8@sha256:dea5fd5d8ce03c54d40301ca4dd2ba23a9f61f9edbfa8565ff0ccb369b811e55_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:31242f9c6c8bf429d4b11ca458b83a2931c95e6032676b76948e84acfd1f4ace_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:4f1bf796330b85789da7622a41da8dfba144121864936f5a978a789f31471805_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:9c52215736668ee145e505fafb22e1feec36cb526168a9268d3bb2e3d236a2b8_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/kiali-rhel8@sha256:d8ba5cb7d2e2ecfbf226ee7b880c750a8006b3648f4bd9eace3b3bfa60aa98a2_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:5ceb0e239b8fb78edbb3f18ad522bbde2dc949b0847200c9a8a601631dc00301_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:c20112f355c939e97a44229056277da2ce68511ed65bd19868707efd89444dbb_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:cea91c8c067cdfd4a321895eaef62fa914a65a204e687e59cb9d8f3f03cbd2cd_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/pilot-rhel8@sha256:eebb1aef0d32db79f88ea74caeefbd13aa00a2cd39726f7b9996f0a381fdd5fa_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:203fa7f4d917e0bad625691aaa9a060a902995d4a905c04514d907fd11858e79_arm64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:95f289d7a5fb1c6e6dc1eb424605bbcab484ea39222bdb4f86bf8932fdaa0bd2_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c922a8a50ed805f36822a1e5906c31c41123070f589177a7e95934c94c29befc_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/proxyv2-rhel8@sha256:c93cc0a574fe8d4c8af5fae3955497a09aa718494cae342da881ed43aafad35a_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:39271db703a21bf1dd5013d21b991119a7c576c3e9b9d057bdae3d38d84c8679_ppc64le",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:566e4e1b3973d75f13f6efeea02bacc6f687b3ec72a09ca94bab6f37a73a4c60_amd64",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:98e2b3ad04539728d36ace3eae0816582a930388a6a5903a9175110aa1ee1e83_s390x",
"8Base-RHOSSM-2.5:openshift-service-mesh/ratelimit-rhel8@sha256:b1825622263dd1065be939d18d163bc8ba1b0c53158bc7805cc36507c44f830b_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Potential to manipulate `x-envoy` headers from external sources"
}
]
}
rhsa-2024:10917
Vulnerability from csaf_redhat
Published
2024-12-10 11:04
Modified
2025-10-23 23:53
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10917",
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43796",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43799",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43800",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45811",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45812",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47068",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10917.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-10-23T23:53:36+00:00",
"generator": {
"date": "2025-10-23T23:53:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:10917",
"initial_release_date": "2024-12-10T11:04:35+00:00",
"revision_history": [
{
"date": "2024-12-10T11:04:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:51:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-23T23:53:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3Ae65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Afdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Abf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Aaebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Af454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Af6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
RHSA-2024:9583
Vulnerability from csaf_redhat
Published
2024-11-13 18:00
Modified
2025-10-31 12:42
Summary
Red Hat Security Advisory: ACS 4.4 enhancement update
Notes
Topic
Updated images are now available for Red Hat Advanced Cluster Security
(RHACS). The updated image includes a bug fix and security fixes.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
This release of RHACS 4.4.6 introduces the following changes:
Bug fix:
* Fixed an issue where you could not view detailed scan results for certain images in RHACS because the page redirected to an error after a brief display. (ROX-24326)
Security fixes:
* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910)
* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)
* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS). The updated image includes a bug fix and security fixes.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release of RHACS 4.4.6 introduces the following changes:\n\nBug fix:\n\n* Fixed an issue where you could not view detailed scan results for certain images in RHACS because the page redirected to an error after a brief display. (ROX-24326)\n\nSecurity fixes:\n\n* encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n\n* dompurify: DOMPurify vulnerable to tampering by prototype pollution (CVE-2024-48910)\n\n* golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)\n\n* golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:9583",
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html",
"url": "https://docs.openshift.com/acs/4.4/release_notes/44-release-notes.html"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "ROX-26880",
"url": "https://issues.redhat.com/browse/ROX-26880"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_9583.json"
}
],
"title": "Red Hat Security Advisory: ACS 4.4 enhancement update",
"tracking": {
"current_release_date": "2025-10-31T12:42:39+00:00",
"generator": {
"date": "2025-10-31T12:42:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:9583",
"initial_release_date": "2024-11-13T18:00:45+00:00",
"revision_history": [
{
"date": "2024-11-13T18:00:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-11-13T18:00:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:42:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHACS 4.4 for RHEL 8",
"product": {
"name": "RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product_id": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-collector-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product_id": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product_id": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product_id": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8\u0026tag=4.4.6-2"
}
}
},
{
"category": "product_version",
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product_id": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8\u0026tag=4.4.6-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64 as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"relates_to_product_reference": "8Base-RHACS-4.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x as a component of RHACS 4.4 for RHEL 8",
"product_id": "8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
},
"product_reference": "advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x",
"relates_to_product_reference": "8Base-RHACS-4.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-20: Improper Input Validation vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces the principle of least functionality, ensuring that only essential features, services, and ports are enabled. This minimizes the number of components that could be affected by input validation vulnerabilities. Security testing and evaluation standards are implemented within the environment to rigorously test input validation mechanisms during the development lifecycle, while static code analysis identifies potential input validation vulnerabilities by default. Process isolation ensures that processes handling potentially malicious or unvalidated inputs run in isolated environments by separating execution domains for each process. Malicious code protections, such as IPS/IDS and antimalware solutions, help detect and mitigate malicious payloads stemming from input validation vulnerabilities. Finally, robust input validation and error-handling mechanisms ensure all user inputs are thoroughly validated, preventing improperly validated inputs from causing system instability, exposing sensitive data, or escalating risks further.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-24790",
"cwe": {
"id": "CWE-115",
"name": "Misinterpretation of Input"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292787"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go language standard library net/netip. The method Is*() (IsPrivate(), IsPublic(), etc) doesn\u0027t behave properly when working with IPv6 mapped to IPv4 addresses. The unexpected behavior can lead to integrity and confidentiality issues, specifically when these methods are used to control access to resources or data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE has been marked as moderate as for our products a network-based attack vector is simply impossible when it comes to golang code,apart from that as per CVE flaw analysis reported by golang, this only affects integrity and confidentiality and has no effect on availability, hence CVSS has been marked as such.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-115: Misinterpretation of Input vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nControls such as input validation and error handling mitigate input misinterpretation risks by enforcing strict validation rules and secure error management. Error handling ensures inputs are validated against predefined formats, preventing malformed data from being misinterpreted. Techniques like strong typing, allow listing, and proper encoding reduce the likelihood of injection attacks and unintended code execution. Input validation also ensures that errors do not expose sensitive system details or cause unpredictable behavior. Secure error handling prevents information leakage through detailed error messages while preserving system stability under malformed input conditions. Together, these controls reduce the attack surface by maintaining consistent input processing and preventing exploitable system states, strengthening the overall security posture.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24790"
},
{
"category": "external",
"summary": "RHBZ#2292787",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292787"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24790"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-48910",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2024-10-31T15:00:53.609372+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2322949"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution vulnerability was found in DOMPurify. This flaw allows a remote attacker to add or modify attributes of an object prototype. This issue can lead to the injection of malicious attributes used in other components or cause a crash by overriding existing attributes with ones of incompatible type.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: DOMPurify vulnerable to tampering by prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The prototype pollution vulnerability in DOMPurify is considered a high-severity issue because it allows attackers to modify the prototype of built-in JavaScript objects, potentially impacting the entire application. This could lead to security risks, such as overwriting methods on fundamental objects like `Object`, `Array`, or `Function`, allowing attackers to manipulate application behavior, bypass security controls, or cause application crashes. Given that DOMPurify is a core library for sanitizing user input, an attacker exploiting this vulnerability could gain control over how sanitized content is processed, leading to the execution of malicious scripts or triggering other unintended behaviors across the application.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"known_not_affected": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-48910"
},
{
"category": "external",
"summary": "RHBZ#2322949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2322949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-48910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48910"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-48910"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc",
"url": "https://github.com/cure53/DOMPurify/commit/d1dd0374caef2b4c56c3bd09fe1988c3479166dc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-p3vf-v8qc-cwcr"
}
],
"release_date": "2024-10-31T14:22:52.867000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-11-13T18:00:45+00:00",
"details": "If you are using an earlier version of RHACS 4.4, you are advised to upgrade to this patch release 4.4.6.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:9583"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:9178124bc5c25689fcc7f18e612324eb960a89cd9953e25ddcfb86901cef121f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:c4fb7a4e30d0e7e8849e37bc6109f23670036f33eea58f5d298b442ce1afb671_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-central-db-rhel8@sha256:ee6981dd3ba39a27922af01c8b4daadbefe669bf749323c2f6c1b338130d51ca_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:7e8ecd268fc23e6012789bf37c79e3f32b2b97fb8680212de48c9d2b45ed6039_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:95cb6eda4d1ab5fc90ac93317051262c3f1fece5bc038ecee402d9637ac9065b_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-rhel8@sha256:d889a70c089484065a2ec82125046ab4a33b128f4dde1964cc079351870e9fb4_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:4841ffb3af288d62c7b55bc8aa0181a22f9115412412199d47ee867bc993dcb1_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:891a5bfabb3caa1500e010a5fa52cb8cb0ae5e891927f29482b60d0c5ff3a689_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:b0ad6462f9116dfef5d6f674abb40888fe0838f63ea63a910e28108fa9cfac96_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:81b5d9d7c45c4a8609c777e658eb8898e655799c813049ea75b0ad235d6c6031_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:91807217f7a5d5a234fe52d22ab0efb5d1555ecbea6bf0e73ea22986f0ccd7b9_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-main-rhel8@sha256:ae1ec07ca41d555e1979d5a78c2a5d73b1ba40deea93fd9c68480dd2a273107d_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:1ca8319a9362df3b09515f3a721152af15068cb98596fabd202be639ec847cd8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:7a5e9703c62f13b5b9541dacb86b864a02399a2facc5e77da50c990742fa48db_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-operator-bundle@sha256:b481c31ea787bb4817304023ab223996b5deaf01f0c80557d652ca2e76a3dfc5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:16557a28d0f406947511e9c0ac45ee817ea140889bafcb904cac32bd8bd5e1f8_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:2fd7371cc9b6d31e893ccf947e1eb82dfdafe64cf52f5180fb56eda3b5f39c1e_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-rhel8-operator@sha256:f06e63143446f6adaa05e172e6badc0d1d5ed4c84e2d5d2557d6009f2f8fc020_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:138e5980154aaa0ac5e9298f784b526351c99704cf695ee431501323ca009ee3_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:825d631625833d741b1a1b5dc5b4ed58931bba19c0df3dfffbe37c8d288501d3_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-roxctl-rhel8@sha256:973018e772a918fdf56c326a9a2dab6930d0495b8832d93a9ce38715bdd3a793_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:3661729758bf85f23ea026ee63878c37e633a559e3a9cb62831c5756208849e0_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:7c958195cb7c571b2281e68812730e5bfdb56239dd78cd7eef68c78305df3a22_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e343a83ec73665ed07c5960878a1b523c2cec5d5f1c17bfbedda3fc1a1670f3f_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:0c937e3b9c64f9b162cfbe427f7302dae647ede0a521954c2dcda9ae5209c02f_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c8ac90dab1deddcca3eeba5fbe21393745a83241bf58c5e45346d1d8136bc766_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dd5bcce7eab9696f3df21db09e63df3a80ce8e5fa64120b0fcaf68abde0d0ba1_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:1d91f26a507a68b406bb35e5773a482ae91e395ee2076a8c1a518f20c5709d39_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:85a7cd5b497ecaa4050bd1a1452da303a188c8c39e647506a97cb51f77bd15ed_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-rhel8@sha256:ad57793f8387672543643510eb5ed7e7bbc3fff4b40b8f46c0133cbaba20fad3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4394e75958311552877cfb76fc7b6e2fb8b2bce515c0e1caf4a8dd74c656b391_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4f0354935b9ed09306af1ed8484da9b36fe0bac08ffa846c8b8ea882fef672f5_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:881b3767f0cfe08cb5fac5fcb8869410c05978909ab3cf8e1c636ab3676c9fc8_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c6d670d1f82894be7a953b784958929790702a922f13237cba2653bb85541d34_s390x",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d4ab8e4dbf191fb71d9b7457846e5544949d03c356c6c855f5490e819b50ab01_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fc03767015d6a89e53ca40378638f2e392941b7ff2e3a820b9528d7fcd0e3db9_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:044dd53b4b98134210f70146352a200965479f3a585c025b4d754fe891ec9bc3_amd64",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:99c096b912ee9f55ad36d402a0e78ba2dfc4120313d3bdb9fc0254f3ef0bfebc_ppc64le",
"8Base-RHACS-4.4:advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c1481660a52b4d594368f1fe9b55646ac09d71ca8b6039e983752fa3185976bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "dompurify: DOMPurify vulnerable to tampering by prototype pollution"
}
]
}
rhsa-2024_10917
Vulnerability from csaf_redhat
Published
2024-12-10 11:04
Modified
2025-01-06 18:54
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10917",
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10917.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-01-06T18:54:35+00:00",
"generator": {
"date": "2025-01-06T18:54:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:10917",
"initial_release_date": "2024-12-10T11:04:35+00:00",
"revision_history": [
{
"date": "2024-12-10T11:04:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-12-10T11:04:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T18:54:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3Ae65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Afdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Abf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Aaebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Af454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Af6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Af5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-10T11:04:35+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10917"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:05b0c8b5f7717aa00aecf8415c5a79aaae45fdd921f16b9b717b715abdf3d86b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:204972905b60ab8957c9bdc79a68be864b7b1e4e946c557fe3529124ad987abc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:6d56211c0cc55af6cf64b0dcb27a733994febfbf24457bb14d658db98b4dcb90_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:7b0708b8375d637c822a10733cd97fdddfd6ed1717dd83a37b50f43f28a71444_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:10857fa228035950b7ee78de526d99f4353b0bdf6f67e8412baa93d7bb8455fc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:3a9c36576f625c796e193b7f457c05adfb2bf7fe27a4a20c8dc3239d7d7d749b_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:7db951f4309125ffaf31b315dcbfaaf2a94e33e0bad34a6a98dcdf7b9b5ae76a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7643356dd52ad18bea1b817b192708735794f5536bf86903f7721b07095d949_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0680a79d33d1be64996ef1713f357a03304525adda3a5b1bd902515015afe3e2_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:153a6c2b46a236577f57863da350c3f89595ecf0de6dd56eb8090741b83f6d10_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:60028cdb647f96cc8e3a49f11428a8d35b44937fdd6c6b8bafbd70d6a0a45fd6_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:912550520b81f9fcf68400dfd76d7a85f68a3fce5e95e34ee5a22a32fb5d3871_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:25dc148e3a956b8ee742d0702a0c3b5e978fefc4f1f080cf2bb273e115044303_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:2c4aafdd152511477c2bfbe1f4bc3545785e1cec7a510e9632bc9d72ea624f83_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:7975ba7f7952a874767ae327f8046c924a797cf3a60fbd21070fe3098c5493b9_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:fdb227f5425459de46782922f53ba147f67ea0a86ef2143b9b5d9bd15ba2958e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:2372370502da86ba88aed909bcc1e768377bf540def547fe663e7b727c7ab07d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8b8554063d8dde0c192b7a936515d4f7a3024c4f44a1c508d3d1c43cb54746cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:aebb7c234a589c94449a25d779b83f29ea94a67d9a15f6e5e1fa7cbb7379faa0_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:f454ee35013e250d97ccf8fbd72392932a7b3cb56bc0a1e8d40e39716b41573e_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:bf8fc9009a8c2ee43c1795d9408b0b385cd99ad0601c50e1e79e6df11f57880d_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c322e17e36003bba01af3583da5c5a5673681f47a27a3c4624353f449fbbfe80_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f2394fa49c88dd115e54de9ce42ceb6178bff1d0a2e6a1d355dc60ba77c5323c_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:f5fbc78661bb8f6b091c521c46973aaa296e0534325d753c47a14309e06c2279_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:e65dce4728a53af4e696d09b05b60a731ecb8cdba19332deb16c291f61adcdb4_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:56784b527bf1fc1a2a0f24ea9b6edea3927746cbe1b18d9c653e0be621f07911_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:59183275cf68d933b5eb3690ae89aacfb9e34ee85868e7a1f858684cff6dcd20_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:7ce3c91962c904cffc5446c0ba6263124ea4b8a17963fbbefabacac73daf4851_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:01668273578bb232be7f478235ef9d4a85ef4eb5e0a63a405a0b7812225e053a_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:121702ab2f294b8dcfa55ecc5566dbd071368713967170bd2297ddcc49e777ea_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4f4632fc0514f19edbb7f951e598d695ce8b07ddd5830f096d87a8925646de0e_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:f6f2d00257e8409ff55194ccec35708b010225aace48d36368d8d227d4b13cc0_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
rhsa-2024_8014
Vulnerability from csaf_redhat
Published
2024-10-22 01:05
Modified
2025-01-06 19:02
Summary
Red Hat Security Advisory: Network Observability 1.7.0 for OpenShift
Notes
Topic
Network Observability 1.7 for Red Hat OpenShift
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Network Observability 1.7.0
Security Fix(es):
* Network Observability: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* Network Observability: XSS vulnerability via prototype pollution (CVE-2024-45801)
* Network Observability: axios: Server-Side Request Forgery (CVE-2024-39338)
* Network Observability: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* Network Observability: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)
* Network Observability: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* Network Observability: Improper Input Handling in Express Redirects (CVE-2024-43796)
* Network Observability: Improper Sanitization in serve-static (CVE-2024-43800)
* Network Observability: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* Network Observability: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)
* Network Observability: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Network Observability 1.7 for Red Hat OpenShift\n\nRed Hat Product Security has rated this update as having a security impact of\nImportant. A Common Vulnerability Scoring System (CVSS) base score, which gives\na detailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Network Observability 1.7.0\n\nSecurity Fix(es):\n\n* Network Observability: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* Network Observability: XSS vulnerability via prototype pollution (CVE-2024-45801)\n* Network Observability: axios: Server-Side Request Forgery (CVE-2024-39338)\n* Network Observability: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* Network Observability: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)\n* Network Observability: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n* Network Observability: Improper Input Handling in Express Redirects (CVE-2024-43796)\n* Network Observability: Improper Sanitization in serve-static (CVE-2024-43800)\n* Network Observability: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n* Network Observability: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)\n* Network Observability: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8014",
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312631"
},
{
"category": "external",
"summary": "NETOBSERV-1377",
"url": "https://issues.redhat.com/browse/NETOBSERV-1377"
},
{
"category": "external",
"summary": "NETOBSERV-1509",
"url": "https://issues.redhat.com/browse/NETOBSERV-1509"
},
{
"category": "external",
"summary": "NETOBSERV-1538",
"url": "https://issues.redhat.com/browse/NETOBSERV-1538"
},
{
"category": "external",
"summary": "NETOBSERV-1540",
"url": "https://issues.redhat.com/browse/NETOBSERV-1540"
},
{
"category": "external",
"summary": "NETOBSERV-1564",
"url": "https://issues.redhat.com/browse/NETOBSERV-1564"
},
{
"category": "external",
"summary": "NETOBSERV-163",
"url": "https://issues.redhat.com/browse/NETOBSERV-163"
},
{
"category": "external",
"summary": "NETOBSERV-1666",
"url": "https://issues.redhat.com/browse/NETOBSERV-1666"
},
{
"category": "external",
"summary": "NETOBSERV-1667",
"url": "https://issues.redhat.com/browse/NETOBSERV-1667"
},
{
"category": "external",
"summary": "NETOBSERV-1733",
"url": "https://issues.redhat.com/browse/NETOBSERV-1733"
},
{
"category": "external",
"summary": "NETOBSERV-1746",
"url": "https://issues.redhat.com/browse/NETOBSERV-1746"
},
{
"category": "external",
"summary": "NETOBSERV-1748",
"url": "https://issues.redhat.com/browse/NETOBSERV-1748"
},
{
"category": "external",
"summary": "NETOBSERV-1753",
"url": "https://issues.redhat.com/browse/NETOBSERV-1753"
},
{
"category": "external",
"summary": "NETOBSERV-1766",
"url": "https://issues.redhat.com/browse/NETOBSERV-1766"
},
{
"category": "external",
"summary": "NETOBSERV-1779",
"url": "https://issues.redhat.com/browse/NETOBSERV-1779"
},
{
"category": "external",
"summary": "NETOBSERV-1783",
"url": "https://issues.redhat.com/browse/NETOBSERV-1783"
},
{
"category": "external",
"summary": "NETOBSERV-1788",
"url": "https://issues.redhat.com/browse/NETOBSERV-1788"
},
{
"category": "external",
"summary": "NETOBSERV-1798",
"url": "https://issues.redhat.com/browse/NETOBSERV-1798"
},
{
"category": "external",
"summary": "NETOBSERV-1805",
"url": "https://issues.redhat.com/browse/NETOBSERV-1805"
},
{
"category": "external",
"summary": "NETOBSERV-1806",
"url": "https://issues.redhat.com/browse/NETOBSERV-1806"
},
{
"category": "external",
"summary": "NETOBSERV-1808",
"url": "https://issues.redhat.com/browse/NETOBSERV-1808"
},
{
"category": "external",
"summary": "NETOBSERV-1811",
"url": "https://issues.redhat.com/browse/NETOBSERV-1811"
},
{
"category": "external",
"summary": "NETOBSERV-1812",
"url": "https://issues.redhat.com/browse/NETOBSERV-1812"
},
{
"category": "external",
"summary": "NETOBSERV-1813",
"url": "https://issues.redhat.com/browse/NETOBSERV-1813"
},
{
"category": "external",
"summary": "NETOBSERV-1816",
"url": "https://issues.redhat.com/browse/NETOBSERV-1816"
},
{
"category": "external",
"summary": "NETOBSERV-1819",
"url": "https://issues.redhat.com/browse/NETOBSERV-1819"
},
{
"category": "external",
"summary": "NETOBSERV-1848",
"url": "https://issues.redhat.com/browse/NETOBSERV-1848"
},
{
"category": "external",
"summary": "NETOBSERV-1884",
"url": "https://issues.redhat.com/browse/NETOBSERV-1884"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8014.json"
}
],
"title": "Red Hat Security Advisory: Network Observability 1.7.0 for OpenShift",
"tracking": {
"current_release_date": "2025-01-06T19:02:50+00:00",
"generator": {
"date": "2025-01-06T19:02:50+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:8014",
"initial_release_date": "2024-10-22T01:05:39+00:00",
"revision_history": [
{
"date": "2024-10-22T01:05:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-22T01:05:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T19:02:50+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "NETOBSERV 1.7 for RHEL 9",
"product": {
"name": "NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9"
}
}
}
],
"category": "product_family",
"name": "Network Observability"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product_id": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product_id": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product_id": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product_id": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34155",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:06.929766+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310527"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/parser package of the Golang standard library. Calling any Parse functions on Go source code containing deeply nested literals can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34155"
},
{
"category": "external",
"summary": "RHBZ#2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155"
},
{
"category": "external",
"summary": "https://go.dev/cl/611238",
"url": "https://go.dev/cl/611238"
},
{
"category": "external",
"summary": "https://go.dev/issue/69138",
"url": "https://go.dev/issue/69138"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3105",
"url": "https://pkg.go.dev/vuln/GO-2024-3105"
}
],
"release_date": "2024-09-06T21:15:11.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-34158",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2024-09-06T21:20:12.126400+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310529"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34158"
},
{
"category": "external",
"summary": "RHBZ#2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158"
},
{
"category": "external",
"summary": "https://go.dev/cl/611240",
"url": "https://go.dev/cl/611240"
},
{
"category": "external",
"summary": "https://go.dev/issue/69141",
"url": "https://go.dev/issue/69141"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3107",
"url": "https://pkg.go.dev/vuln/GO-2024-3107"
}
],
"release_date": "2024-09-06T21:15:12.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-39338",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"discovery_date": "2024-08-13T17:21:32.774718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2304369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Axios HTTP Client. It is vulnerable to a server-side request forgery attack (SSRF) caused by unexpected behavior where requests for path-relative URLs get processed as protocol-relative URLs. This flaw allows an attacker to perform arbitrary requests from the server, potentially accessing internal systems or exfiltrating sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: axios: Server-Side Request Forgery",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as IMPORTANT because it can be exploited remotely with low complexity and without user interaction, it poses a significant risk to confidentiality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39338"
},
{
"category": "external",
"summary": "RHBZ#2304369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases",
"url": "https://github.com/axios/axios/releases"
},
{
"category": "external",
"summary": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html",
"url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
}
],
"release_date": "2024-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: axios: Server-Side Request Forgery"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45801",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-16T19:20:09.863249+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312631"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in DOMPurify. This issue may allow an attacker to use specially-crafted HTML to bypass the depth checking or use Prototype Pollution to weaken the depth check, which can lead to cross site scripting (XSS) attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: XSS vulnerability via prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in DOMPurify, while significant, is categorized as moderate severity rather than important due to its specific conditions for exploitation. The issue requires not only a sophisticated nesting technique to bypass the depth checks but also the ability to leverage Prototype Pollution to weaken these protections. This makes the attack scenario relatively complex and less likely to be encountered in general use cases. Furthermore, the flaw impacts only certain configurations and usage patterns, thus reducing its immediate risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45801"
},
{
"category": "external",
"summary": "RHBZ#2312631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312631"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45801"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45801",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45801"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/1e520262bf4c66b5efda49e2316d6d1246ca7b21",
"url": "https://github.com/cure53/DOMPurify/commit/1e520262bf4c66b5efda49e2316d6d1246ca7b21"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/26e1d69ca7f769f5c558619d644d90dd8bf26ebc",
"url": "https://github.com/cure53/DOMPurify/commit/26e1d69ca7f769f5c558619d644d90dd8bf26ebc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-mmhx-hmjr-r674",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-mmhx-hmjr-r674"
}
],
"release_date": "2024-09-16T19:16:11.080000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dompurify: XSS vulnerability via prototype pollution"
}
]
}
rhsa-2024_8113
Vulnerability from csaf_redhat
Published
2024-10-15 08:52
Modified
2025-01-06 19:02
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an
S3 compatible API.
Bug fixes:
* Previously, on the disaster recover (DR) monitoring dashboard, the detail about `Last snapshot synced` was missing for appset based applications. With this fix, the dashboard shows the `lastGroupSyncTime` under the `Volume snapshot` for the selected appset based applications. (BZ#2295324)
* Previously, when OpenShift Data Foundation was installed in a namespace other than `openshift-storage`, such as ROSA, the user interface (UI) labelled the nodes during the StorageSystem deployment and added a dynamic label "cluster.ocs.openshift.io/<CLUSTER_NAMESPACE>: ‘'", where "CLUSTER_NAMESPACE" is the namespace in which the StorageSystem is getting created). However the ODF/OCS operators expected the label to be always a static label, "cluster.ocs.openshift.io/openshift-storage: ‘’.
With this fix, the user interface adds a static label "cluster.ocs.openshift.io/openshift-storage: ‘’ to the nodes and as a result the installation proceeds as expected. (BZ#2303083)
Enhancement:
* In the storage clients table of the Storage clients page of the OpenShift web console, storage cluster name is displayed along with the cluster ID to provide better clarity. (BZ#2304905)
All users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.3 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an\nS3 compatible API.\n\nBug fixes:\n\n* Previously, on the disaster recover (DR) monitoring dashboard, the detail about `Last snapshot synced` was missing for appset based applications. With this fix, the dashboard shows the `lastGroupSyncTime` under the `Volume snapshot` for the selected appset based applications. (BZ#2295324)\n\n* Previously, when OpenShift Data Foundation was installed in a namespace other than `openshift-storage`, such as ROSA, the user interface (UI) labelled the nodes during the StorageSystem deployment and added a dynamic label \"cluster.ocs.openshift.io/\u003cCLUSTER_NAMESPACE\u003e: \u2018\u0027\", where \"CLUSTER_NAMESPACE\" is the namespace in which the StorageSystem is getting created). However the ODF/OCS operators expected the label to be always a static label, \"cluster.ocs.openshift.io/openshift-storage: \u2018\u2019.\nWith this fix, the user interface adds a static label \"cluster.ocs.openshift.io/openshift-storage: \u2018\u2019 to the nodes and as a result the installation proceeds as expected. (BZ#2303083)\n\nEnhancement:\n\n* In the storage clients table of the Storage clients page of the OpenShift web console, storage cluster name is displayed along with the cluster ID to provide better clarity. (BZ#2304905)\n\nAll users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8113",
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2283959",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283959"
},
{
"category": "external",
"summary": "2295324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295324"
},
{
"category": "external",
"summary": "2296521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296521"
},
{
"category": "external",
"summary": "2300333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300333"
},
{
"category": "external",
"summary": "2302463",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302463"
},
{
"category": "external",
"summary": "2303083",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303083"
},
{
"category": "external",
"summary": "2304905",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304905"
},
{
"category": "external",
"summary": "2308445",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308445"
},
{
"category": "external",
"summary": "2310370",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310370"
},
{
"category": "external",
"summary": "2312055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312055"
},
{
"category": "external",
"summary": "2315708",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2315708"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8113.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update",
"tracking": {
"current_release_date": "2025-01-06T19:02:39+00:00",
"generator": {
"date": "2025-01-06T19:02:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.5"
}
},
"id": "RHSA-2024:8113",
"initial_release_date": "2024-10-15T08:52:38+00:00",
"revision_history": [
{
"date": "2024-10-15T08:52:38+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-15T08:52:38+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-01-06T19:02:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.3-1"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.3-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.3-1"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T08:52:38+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8113"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:2607716e0f81e3bd7b1142bb659e7e014281df7af15ae1902c119785f109873d_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:6312b4e4365530b398d34769da34113b156ff407d0189d2b909c2b27a5b344c5_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:7bffeec5f90000df7742e44dea55694e966fa0b35f5895aac0a1163bbce6573c_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5677389d91ef1e73da79a495d18bb47a94ecbe541395d8e2912595d5409841d2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:64f6ce88210656474cacf611b1e54eeb88be36f0e0e919719fa55ba3ec5a8bd3_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9eb29e92f64fb85151d6fced24d3b97ecd73df25d00d9c27bc43b08c41c48b55_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:b06359b7d2322e5b95cc23a13b6c7fe1fdabe19b4623117b1525ac3f2a211c8e_arm64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:1932ade33bd22b30845c64d083fc649807c0a63668ced57998eb2e623e6b487b_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:5dc780b845bf22a5ed8350a0c8783d1fb8a0fef4ce2e1c3265db82fd236ea3e1_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:e966bb50e83675453833e88fdc4a384f429d96a8430ad6849972fbc15c0f8313_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:0e0a5877546c28076ad99cc22e560d6c952959c142e269fa83d866d5fff95e87_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:7e44ee05c11d6ff10a07a59484ddc004eb9ba0acc5ff1f6b54d37912e4f7daf2_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b1580bce974d3d6768f9f091b0d9ccc24756ab493ccc46a253a48af5e08db5e2_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d87027dd4c0573b4f2eda78a8d3a53ef0862569d5ab8be3d6abd4a7cc8bc9f8d_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:4213b28df164ae81f6d9698f4efe2569501668cbce2fe8214c19cc540a0c2141_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:aedb8552fc5969cfa7bc090add6421848a91b06f4ef94a1922c2365bd69a8559_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:bf828ca2293ac3be275613872212e56049880a2a8ad6c8f1bb5bb66187d8e085_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:123523041fe4092a36fd41cc6203802d903188642bde1a40f22515a5715fff81_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9e60966e93cc650b970b128498c02ede3df259be1736f3feb502768745d94c0a_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:f4bb37b39c1325a3964753b1fa8bac4b9303f9031f367f004430251377361eb4_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:30add37f7ed1f17b871669c8ffd2a800ad2a17fdd805240bf96f247507703047_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:9838494b592782f0ba76f7a6c35f0038c0cb8853f6fff4ee9f7001a9888be5e7_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:eb2954eba23c0e2763e96c65eea09d3b1b482d3462cc5486b37f0f963f7344a8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:fd7885c63cf3088c6704f0fccdf36e0ba26ef588854ec9eb59047f51da35f3f8_arm64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:50c5c58e1e065bc03b7e71116a48ee39080539c4b81b8ef0b9899454385f60cb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:548a850169f3a90b5ee62e175aeb9c6d6fb24d2980d55fc86e0ab7eafef9f825_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:6b0b554925b945370aeb786e45f7f8676f8760c572df03153b8682bd42e8d477_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:1bbc151acb46edd4c042acd66d028eaa6b514204ad79c8be708d89f07c9f9e81_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:8b1349f42b72eff94f35195729cb6f3f93a3c80def65581222e6ab571d0e4bf1_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:f4956bd8ff8abed1fd909c77323ba62300e3a10080ebf45e295960ee9b13849c_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:4c40801e077d40dfeeb97b835f67e5e2868d9b867f062fd4fc6e98a34021ca1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:53da012c5fc8003c4d17008ba532c281c5f293d6933172119085b68088ccec7f_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:6349fb76ed7d1b83ecddbadeb2325408eed283d02b12285f534407aea557362c_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ea010d2fcf217dce8fe5aa185a43ec8e8fa4f3d640d479ad2ea940b4848cdd13_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:24dae6fe61af34d27e5fbed98f25dcfd0fe682703d4701c0047a123208012121_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:338239cef29603d7cbc880655d11e9a370e79570930cb7e28ed388e386045d1c_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:33d6b3c313d90a89e662516e96fb590cc12b101f6f481acbd1837fe3fb15e2fc_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:461d71b5b8ba5fc5d791f8a49e8cb996660591c2c5d4828a696b995f1556b9ac_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3071570a86e4869917fd240f2ebd2fe045b3dade7d0ad02853285c1654a703a5_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:94e657d7b8477bc2606f677ee2621403faecc8bbc1f27acdc3821a40b2340698_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:e4cf3ad6d4fe832104a72e2689fa317b6bd26685418833dc2270e59e1459b189_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:12b532399f68a08e3cc526b49773c267ccf6d703a7b891e6a2b5ed8e43173b30_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:298866526088d05769c5e784b62c9681c1ef0315f8977a433e725f3aeb5e7920_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:4ba8eb0bf46dad3c65c61882d92fa54de452dcdf642bd40504cd8bbd4494558f_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:55a0efdb08e6e261983905fee0867bffdb82ae48495b074e527ad26729192ab9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:8721c6de61a7ee31e1312856e5887a36be7b1ce930fcba24b720097d286be6f6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:b8cc383dca903d2e229772937306456bde2b80ea3200ba354789a232fde825c9_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:1487325c0aabb062ce9dfe7f2b3a7b3ba03b42231455406b1f3818bda124a6e9_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:383a579a19c10dda694f373cd772b894e59791a36f4258b2cfb001968367e9c0_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:4005df877f43b05aaa7f63a77fa8ad29b980121fbb3eb97c4470c8744abb7a11_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:6bcf351b998ef81fe66340e2bc27398165be0b6aafcf51233e772a4cdb02618c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:2afcef0a34152e6828d79f4894d0da0badf275075e7bc1a91d1ab85f105a6a2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:3507841b2f0757a42fed5ba0e6e94a029ce924d98e085cc384798c2b37c019fe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:60b5a727c734903f0b1021b4a90c5bbfae5ca65fe0d51ec17399d47635289235_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:9c9bbf026f4fcf7da90729b2c49850d16bb2b48997c68782117ef495c99b57ce_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:30fcd0f6e1fbb29456163e00a8c5c6c90d9c0dc27b0435a50cb42d20f52e686f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:4000cc38f48546a17f728a2328871d3deda6015742f5a11587207ecf84225460_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:de35a74ddbe766c84298d5347cdffe7fbf4a571028ae236cf0d70d409869c9f6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:26dc5caa38dc2e1d61d66820be14e991fee386d17f5405e801ab6141e317df64_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:4c13e76ea87a06a890fa71c6ed5b6998dc9999da1dcf230c9a0b6a333ff0e3e5_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:dc943e771dfb8b180c13b84a0a2aebb9f9e01d720aa89f492ee8c120dd7af372_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:1b710bc135bc32558182995a18978ebf0a7c4509de1053db05db9a969343caf6_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:6f7cb7c3f4a5957c44972644b980d5f83beda026a48c97315b7a47b698f24e37_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:821a6dfb261e2736fd0a7728d50acbdbd6c74317034724571026c5e1ac150ec8_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:f056fae131175a4e179ad3f267f44562eec169383d382c67398eb5d3d74ab50a_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:00a38f702a6b771ff58392e323c52d3be66ec43d61a1b2c3a8664f92b6698ae3_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a0481ef7d603bbd4194d725bcd91992122ecc399460bf3c215de73ffc012e68a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a42e96f4758df3fc79cbd67b67b41ed2ef53db904395d8b08cbe5cd3f8e4ecb4_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e02a85818cb748b65fa29ba689b9240bc181087a50d96418499f0b7f3aa82f57_arm64",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:715f53af949614a8a72252a19edbe9eb84c53ac8434da6b32366039046e679e5_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:d56279132a543dca6c625f79ce118ee36b59ea6000cf5a895cda79c856eb1de1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:e5c49afe79002be166f7b51421d712069ad6fe67c54743c8a991afd97f9f30f6_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:5ddcb5b3ff0a69c80857e5185dcfd9e397ba0ad1272e66cd98acd729996d006a_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:a91d41a5bfcf9b7fcd4504c59dd3d44be644ef5dea929d1b4dcb26fffec4f45c_s390x",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d721cfdfdb09d95432ca808a491618af38cd600d96a6157fdf0f00bf6ce616d1_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:28a47c19fadade32960712e3e23c21ef79369c045d2016f00564a9291b483dfd_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:6cef9e6774596153f83743a8cfa1919e8eee26c19145e5cf36c3adf6a4f58d6b_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:71683f56cbcf5378086924b7c4f3666815d30463b74f801df0fa9f6781a421ea_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:8a812868150ffa298110bf81d30ae3aecf152003ed64f927f1416e36cc0e579d_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1777e37400e5e8d736bbeec8a0123b573eb77b416460322c082c25f711b6af0d_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:3a20e65f8638501afd7c8580c72fed84dd1629e59e019303a0edd3e0ce89c203_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a49df6e9be0a6554622abc1d01ed872271b89cc97c802cb8c90bd969943d31f9_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:3f018797c5507d4404ba92363f714ce948e095920fe9ddfcee447ef86a51823a_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:c94c1be03b3bb6b62c233102048cc34f051c7b23de2cb6548869df4db6646996_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:f20e6ba21e4ad8e7d66b8de3b7f4d5f5580ef414c55134a28c1c025da365b3b0_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:3132999b2b34ff74ede22b057de9005714c91e2d31d3727924ea0960dc5b8231_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:8d320cc20359f8d44957a72cfb80f98f228506fbb9b9318cddd64a3120166356_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:f221b43415c44080b49785f4a35447dc529e0d27c17a76057df6b80992ac5388_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:570760ed13629409e8533a91823f1c0b1f331d97590b1a47b0b15f4b35793ceb_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:742bf306d06ae5ed557c629ca4be3b5ae24a0f4dff37d7da106d4f112066f26e_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9b57ab1ec3d520d8c8fbc3584cd833b2262b6fa949c3b84cbbc43b899f0314e5_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b67afc5228f117432c8428782f72faf2b9b6ae1ae352aca9e0055a2ff9006d26_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:0843c3f61fa90cfafde569816b59ff0c8e5e69663cd9d58832204d074a2fcfc6_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3d6a235a8365186279b13335bbd6705efeac2fcd4211acd79df2b62de701479a_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:d97b31272d77f0b0552844cc58749b772d71bef73d40bd2bf7befdad86d139e4_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0a59997f6099bd93380e06a044122c51b8ffd9c269460cb3bb5541cde795cec2_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:1530173486535fd574caae9d8e537701ac4d1782ed08248129041ad9ada52b20_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b91c27e3cc9b1b35eaeac17e8b34da3cf0450584105a08f2cf3406c5ed41d7aa_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
}
]
}
RHSA-2024:7726
Vulnerability from csaf_redhat
Published
2024-10-07 09:24
Modified
2025-10-31 12:41
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.2
Notes
Topic
Red Hat OpenShift Service Mesh Containers for 2.6.2
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a
detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.
Security Fix(es):
* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)
* express: Improper Input Handling in Express Redirects (CVE-2024-43796)
* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule
(CVE-2024-43788)
* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* envoy: Malicious log injection via access logs (CVE-2024-45808)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
* envoy: Envoy crashes for `LocalReply` in HTTP async client (CVE-2024-45810)
* curl: libcurl: ASN.1 date parser overread (CVE-2024-7264)
* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.6.2\n\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a\ndetailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is Red Hat\u0027s distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.\n\nSecurity Fix(es):\n* send: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* serve-static: Improper Sanitization in serve-static (CVE-2024-43800)\n* express: Improper Input Handling in Express Redirects (CVE-2024-43796)\n* path-to-regexp: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n* webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule\n(CVE-2024-43788)\n* body-parser: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* envoy: Malicious log injection via access logs (CVE-2024-45808)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n* envoy: Envoy crashes for `LocalReply` in HTTP async client (CVE-2024-45810)\n* curl: libcurl: ASN.1 date parser overread (CVE-2024-7264)\n* envoy: Potential to manipulate `x-envoy` headers from external sources (CVE-2024-45806)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7726",
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2301888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301888"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "2313685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313685"
},
{
"category": "external",
"summary": "2313687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313687"
},
{
"category": "external",
"summary": "OSSM-3337",
"url": "https://issues.redhat.com/browse/OSSM-3337"
},
{
"category": "external",
"summary": "OSSM-8001",
"url": "https://issues.redhat.com/browse/OSSM-8001"
},
{
"category": "external",
"summary": "OSSM-8099",
"url": "https://issues.redhat.com/browse/OSSM-8099"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7726.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.2",
"tracking": {
"current_release_date": "2025-10-31T12:41:48+00:00",
"generator": {
"date": "2025-10-31T12:41:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:7726",
"initial_release_date": "2024-10-07T09:24:48+00:00",
"revision_history": [
{
"date": "2024-10-07T09:24:48+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-07T09:24:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:41:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 8",
"product": {
"name": "RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el8"
}
}
},
{
"category": "product_name",
"name": "RHOSSM 2.6 for RHEL 9",
"product": {
"name": "RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.6::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product_id": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel8\u0026tag=1.89.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.6.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.89.4-3"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.89.6-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.6.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.6.2-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel9\u0026tag=2.6.2-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.6.2-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64"
},
"product_reference": "openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64 as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x as a component of RHOSSM 2.6 for RHEL 8",
"product_id": "8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64 as a component of RHOSSM 2.6 for RHEL 9",
"product_id": "9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64",
"relates_to_product_reference": "9Base-RHOSSM-2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-7264",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-07-31T04:33:09+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2301888"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libcurl, where libcurl\u0027s ASN1 parser code has the `GTime2str()` function, used for parsing an ASN.1 Generalized Time field. If a syntactically incorrect field is given, the parser can use -1 for the length of the *time fraction*, leading to a `strlen()` performed on a pointer to a heap buffer area that is not purposely NULL terminated.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "curl: libcurl: ASN.1 date parser overread",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability is classified as low severity because it primarily results in a heap buffer over-read rather than a direct memory corruption or code execution risk. Since the ASN.1 parsing occurs after a successful TLS handshake, the malformed certificate must first bypass the TLS library\u0027s validation, which significantly reduces the likelihood of exploitation. \n\nAdditionally, the impact is limited to a potential crash or unintended heap data exposure through CURLINFO_CERTINFO, but not arbitrary code execution. The requirement for a specific TLS backend configuration and the controlled nature of the memory read further minimize its exploitability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-7264"
},
{
"category": "external",
"summary": "RHBZ#2301888",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2301888"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-7264",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-7264"
},
{
"category": "external",
"summary": "https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixMSQL",
"url": "https://www.oracle.com/security-alerts/cpuoct2024.html#AppendixMSQL"
}
],
"release_date": "2024-07-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\n\nRed Hat build of curl uses OpenSSL, which is not included in the affected list of GnuTLS, Schannel, Secure Transport and mbedTLS. Inspect which TLS backend is in use by running:\n\n$ curl --version\n\nCheck the reference for curl handled by the maintainers which may contain more relevant information around this vulnerability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "curl: libcurl: ASN.1 date parser overread"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"acknowledgments": [
{
"names": [
"Mike Whale"
]
},
{
"names": [
"James Force"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2024-45806",
"cwe": {
"id": "CWE-639",
"name": "Authorization Bypass Through User-Controlled Key"
},
"discovery_date": "2024-09-20T00:40:20.976812+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313683"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Envoy that allows external clients to manipulate Envoy headers, potentially leading to unauthorized access or other malicious actions within the mesh. This issue arises due to Envoy\u0027s default configuration of internal trust boundaries, which considers all RFC1918 private address ranges as internal. The default behavior for handling internal addresses in Envoy has been changed. Previously, RFC1918 IP addresses were automatically considered internal, even if the internal_address_config was empty. The default configuration of Envoy will continue to trust internal addresses while in this release and it will not trust them by default in next release. If you have tooling such as probes on your private network which need to be treated as trusted such as changing arbitrary x-envoy headers, please explicitly include those addresses or CIDR ranges into `internal_address_config`. Successful exploitation could allow attackers to bypass security controls, access sensitive data, or disrupt services within the mesh, like Istio.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Potential to manipulate `x-envoy` headers from external sources",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat\u0027s CVSS score and impact are specific to our product and may not match those of upstream. This is due to how envoy is configured and used within our OpenShift Service Mesh product.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45806"
},
{
"category": "external",
"summary": "RHBZ#2313683",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313683"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45806"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45806"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-ffhv-fvxq-r6mf"
}
],
"release_date": "2024-09-20T00:15:02.293000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by configuring envoy to treat all IPs as external. This is done by setting the internal_address_config range for envoy to `0.0.0.0/32`.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Potential to manipulate `x-envoy` headers from external sources"
},
{
"cve": "CVE-2024-45808",
"cwe": {
"id": "CWE-117",
"name": "Improper Output Neutralization for Logs"
},
"discovery_date": "2024-09-20T00:40:26.266584+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313685"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in envoy. Affected versions of envoy may allow malicious attackers to inject unexpected content into access logs. This is achieved by exploiting the lack of validation for the `REQUESTED_SERVER_NAME` field for access loggers.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Malicious log injection via access logs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in Envoy that allows attackers to inject unexpected content into access logs is classified as moderate severity rather than important because the impact is primarily related to log integrity rather than direct exploitation of the system or data breaches, which lowers the overall risk profile. While log tampering can lead to misleading information, it does not directly compromise the application\u2019s functionality or security boundaries. Additionally, the attack requires specific conditions to succeed, relying on the lack of validation for the `REQUESTED_SERVER_NAME` field, which may not be present in all configurations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45808"
},
{
"category": "external",
"summary": "RHBZ#2313685",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313685"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45808",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45808"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45808",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45808"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-p222-xhp9-39rc",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-p222-xhp9-39rc"
}
],
"release_date": "2024-09-20T00:15:02.733000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Malicious log injection via access logs"
},
{
"cve": "CVE-2024-45810",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2024-09-20T00:40:31.483825+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2313687"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy. Envoy will crash when the http async client is handling `sendLocalReply` under some circumstances, such as websocket upgrade and requests mirroring. The http async client will crash during the `sendLocalReply()` in http async client if the http async client is duplicating the status code or if the destruction of the router is called at the destructor of the async stream while the stream is deferred or deleted. This issue occurs when the stream decoder is destroyed but it\u0027s reference is called in `router.onDestroy()`, causing a segment fault. This will impact ext_authz if the `upgrade` and `connection` header are allowed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: Envoy crashes for `LocalReply` in HTTP async client",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in Envoy related to the HTTP async client crashing during `sendLocalReply()` is classified as moderate severity rather than important due to the crash is contingent on particular scenarios, such as websocket upgrades and request mirroring, which may not be common in all deployments. Additionally, while the segmentation fault can disrupt service, it does not compromise data integrity or expose sensitive information.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45810"
},
{
"category": "external",
"summary": "RHBZ#2313687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45810",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45810"
},
{
"category": "external",
"summary": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-qm74-x36m-555q",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-qm74-x36m-555q"
}
],
"release_date": "2024-09-20T00:15:03.153000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-07T09:24:48+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7726"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:239b42c643b37c7aa7de38e9eeb00222e9dcc8e96b845307c73ecb48ec8f6175_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:26d5dec1bf366dac99df61dd31cf8a6a6937b4e81d1d61a3b3b57e7bf8ee3375_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:58760b14fd38690a490f7a5ea01e44c5ceee193324488ed4016203c042f88e7b_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/grafana-rhel8@sha256:a50a14787a8765c1c9da772d58d08138cacb29ba41e32bc3f5c0ff9b8452d40b_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:3c5142ebe3cb9c77b67c29fd7a6fb6b5176ace9833f69aaebec658b4ca8232ad_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:b72249b5326e4606f53a0130f099ccb636241de275891f98e0a622c8db1a4c9c_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:c5562019a94ccaa070d4c2107b992847ecfdee49c1f4dd3043e3c20307b74112_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-cni-rhel8@sha256:fb11daf6c17ea22d9b80af3f2b48807a00e73a347e081f046beb5707923ea976_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:32d02294f6c3ed5ee704852afb31a98777eeae19fa48f2cfbfa0aa17701eb025_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:7a69b6ecf90b9be263edfca0ffa4f40cb8c076f7472559efb09a83a48da92de5_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:92965aba07c6c3ae594fa30f72b47692b9692639f47882d3a29b1fe3938f1325_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-must-gather-rhel8@sha256:c00a763b4b037c92378363a29e55c057fd1ae5e7efaded6ca6e53c4be1c13404_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:231e044e7f872d658114881aab776604e583d2b8da0448a2272ffd15c711db3d_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:3c87f98e0b065af6bd93090edaa2187218dbed286f712a56daefad5a2bd124ae_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:bd7006b966f6d367bc1814750c1465f7ffb9e39fc2fb7d3607d11dabc77115d6_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/istio-rhel8-operator@sha256:cf746daf197865ecb846af2475fcea56c0555c8bdafb7864d4718f1da3d872dc_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:2050b64b6d66ba3c4a068311ab1737219c318ec4f9e4b07cc33fecf47c3b6795_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:276689457eada53dacecf65a92bf64a7535add94c728b165771bc27e3b10009c_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:29cf0230854ac71bb01095db0b07783bac74d12b4164d263bd66f1d225fb48bd_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-ossmc-rhel8@sha256:d6ae2eb93558b129b0051980ff73e0e09d41763eb29c2564a28a60281d9f59c7_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:5c6810907b68548ca4d79b6d07e9b936ce74e4efbd2e39e225793bce1d15e1d9_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:7a35294bd4d2a4f9d2fbc3ac1f24e8aef5aa0a84c2780c275348c77df68f5a32_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:80ad09921b68b246a30bcfebef670cac228e5b8e0a7db63c0462e09a518d68ec_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8-operator@sha256:b28f8f238dfa4dc4590fe326ef1c0db17238dda3640a0e9fdf8fb93a69b4e0c3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:37bb32758dbda228f036d2b0cb3cf7010926334f9ebc82bebf0cac5c397c9bd3_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:4223dcfd7630709f2841b220281120cc6010548d8e59e27cebdf304f16fcf3ac_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:acab16ff4de53601dd13971b5165f5ca6ba68345be9a2135469e246d385243cc_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/kiali-rhel8@sha256:ce49c56b67a541d00a985c7e7da4a8d36d968f93bafd5d037586476c3583f9d8_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:03e25e6be5dd9909f4917494c282eaa888bcb3e2a1b6fdb6e819be8bfcde3578_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:871eff21377954f22da7aded97f65dbb1d9ed8cfdd33c29b790609e36b0bdeec_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:931c5faa35bc2200fa595ea418e861c6ca8c8bcda34821aa0592565c7873415a_s390x",
"8Base-RHOSSM-2.6:openshift-service-mesh/pilot-rhel8@sha256:a99e9d30ac8b5767b7eb95c3183f8dde99130ce5441928da1082a4e48108715b_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:40e075e75225da1082774c0ec33b314b9659d27e36fb698726d466a7be0e63f3_arm64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:8e103924f51e6697e0a6890e9aaafd9b48e1fef7a8300badcac6bb0220807794_ppc64le",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:a224fe00e59b8e7c85d479bc3962e81ba274ef3be4b2aee55e56534f4d03aa32_amd64",
"8Base-RHOSSM-2.6:openshift-service-mesh/ratelimit-rhel8@sha256:c4fcdfa308b9995044e0daab35916b3e85dc94dd30131a9410652dcf23e8e27f_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:11e2e2f3a3b26a9d79573277c6f38d06f6906bdda547556fe92eee57a89fe86e_ppc64le",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:19b29793f5615cd360e83e736471175db4dc205ae33f3914b28d41502036e655_amd64",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:56cdb7f7540a76bf10235d4c3048ef99d8d8602b8420f16a03ef7d446c18df87_s390x",
"9Base-RHOSSM-2.6:openshift-service-mesh/proxyv2-rhel9@sha256:cdfee2e141fa6559a6c64373177a4a666e39052add4498b880c08c496e25109e_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: Envoy crashes for `LocalReply` in HTTP async client"
}
]
}
rhsa-2024:8014
Vulnerability from csaf_redhat
Published
2024-10-22 01:05
Modified
2025-10-31 12:42
Summary
Red Hat Security Advisory: Network Observability 1.7.0 for OpenShift
Notes
Topic
Network Observability 1.7 for Red Hat OpenShift
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
Details
Network Observability 1.7.0
Security Fix(es):
* Network Observability: Code Execution Vulnerability in Send Library (CVE-2024-43799)
* Network Observability: XSS vulnerability via prototype pollution (CVE-2024-45801)
* Network Observability: axios: Server-Side Request Forgery (CVE-2024-39338)
* Network Observability: Denial of Service Vulnerability in body-parser (CVE-2024-45590)
* Network Observability: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)
* Network Observability: Backtracking regular expressions cause ReDoS (CVE-2024-45296)
* Network Observability: Improper Input Handling in Express Redirects (CVE-2024-43796)
* Network Observability: Improper Sanitization in serve-static (CVE-2024-43800)
* Network Observability: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)
* Network Observability: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)
* Network Observability: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Network Observability 1.7 for Red Hat OpenShift\n\nRed Hat Product Security has rated this update as having a security impact of\nImportant. A Common Vulnerability Scoring System (CVSS) base score, which gives\na detailed severity rating, is available for each vulnerability from the CVE\nlink(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Network Observability 1.7.0\n\nSecurity Fix(es):\n\n* Network Observability: Code Execution Vulnerability in Send Library (CVE-2024-43799)\n* Network Observability: XSS vulnerability via prototype pollution (CVE-2024-45801)\n* Network Observability: axios: Server-Side Request Forgery (CVE-2024-39338)\n* Network Observability: Denial of Service Vulnerability in body-parser (CVE-2024-45590)\n* Network Observability: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule (CVE-2024-43788)\n* Network Observability: Backtracking regular expressions cause ReDoS (CVE-2024-45296)\n* Network Observability: Improper Input Handling in Express Redirects (CVE-2024-43796)\n* Network Observability: Improper Sanitization in serve-static (CVE-2024-43800)\n* Network Observability: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion (CVE-2024-34156)\n* Network Observability: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion (CVE-2024-34155)\n* Network Observability: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion (CVE-2024-34158)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:8014",
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "2312631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312631"
},
{
"category": "external",
"summary": "NETOBSERV-1377",
"url": "https://issues.redhat.com/browse/NETOBSERV-1377"
},
{
"category": "external",
"summary": "NETOBSERV-1509",
"url": "https://issues.redhat.com/browse/NETOBSERV-1509"
},
{
"category": "external",
"summary": "NETOBSERV-1538",
"url": "https://issues.redhat.com/browse/NETOBSERV-1538"
},
{
"category": "external",
"summary": "NETOBSERV-1540",
"url": "https://issues.redhat.com/browse/NETOBSERV-1540"
},
{
"category": "external",
"summary": "NETOBSERV-1564",
"url": "https://issues.redhat.com/browse/NETOBSERV-1564"
},
{
"category": "external",
"summary": "NETOBSERV-163",
"url": "https://issues.redhat.com/browse/NETOBSERV-163"
},
{
"category": "external",
"summary": "NETOBSERV-1666",
"url": "https://issues.redhat.com/browse/NETOBSERV-1666"
},
{
"category": "external",
"summary": "NETOBSERV-1667",
"url": "https://issues.redhat.com/browse/NETOBSERV-1667"
},
{
"category": "external",
"summary": "NETOBSERV-1733",
"url": "https://issues.redhat.com/browse/NETOBSERV-1733"
},
{
"category": "external",
"summary": "NETOBSERV-1746",
"url": "https://issues.redhat.com/browse/NETOBSERV-1746"
},
{
"category": "external",
"summary": "NETOBSERV-1748",
"url": "https://issues.redhat.com/browse/NETOBSERV-1748"
},
{
"category": "external",
"summary": "NETOBSERV-1753",
"url": "https://issues.redhat.com/browse/NETOBSERV-1753"
},
{
"category": "external",
"summary": "NETOBSERV-1766",
"url": "https://issues.redhat.com/browse/NETOBSERV-1766"
},
{
"category": "external",
"summary": "NETOBSERV-1779",
"url": "https://issues.redhat.com/browse/NETOBSERV-1779"
},
{
"category": "external",
"summary": "NETOBSERV-1783",
"url": "https://issues.redhat.com/browse/NETOBSERV-1783"
},
{
"category": "external",
"summary": "NETOBSERV-1788",
"url": "https://issues.redhat.com/browse/NETOBSERV-1788"
},
{
"category": "external",
"summary": "NETOBSERV-1798",
"url": "https://issues.redhat.com/browse/NETOBSERV-1798"
},
{
"category": "external",
"summary": "NETOBSERV-1805",
"url": "https://issues.redhat.com/browse/NETOBSERV-1805"
},
{
"category": "external",
"summary": "NETOBSERV-1806",
"url": "https://issues.redhat.com/browse/NETOBSERV-1806"
},
{
"category": "external",
"summary": "NETOBSERV-1808",
"url": "https://issues.redhat.com/browse/NETOBSERV-1808"
},
{
"category": "external",
"summary": "NETOBSERV-1811",
"url": "https://issues.redhat.com/browse/NETOBSERV-1811"
},
{
"category": "external",
"summary": "NETOBSERV-1812",
"url": "https://issues.redhat.com/browse/NETOBSERV-1812"
},
{
"category": "external",
"summary": "NETOBSERV-1813",
"url": "https://issues.redhat.com/browse/NETOBSERV-1813"
},
{
"category": "external",
"summary": "NETOBSERV-1816",
"url": "https://issues.redhat.com/browse/NETOBSERV-1816"
},
{
"category": "external",
"summary": "NETOBSERV-1819",
"url": "https://issues.redhat.com/browse/NETOBSERV-1819"
},
{
"category": "external",
"summary": "NETOBSERV-1848",
"url": "https://issues.redhat.com/browse/NETOBSERV-1848"
},
{
"category": "external",
"summary": "NETOBSERV-1884",
"url": "https://issues.redhat.com/browse/NETOBSERV-1884"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8014.json"
}
],
"title": "Red Hat Security Advisory: Network Observability 1.7.0 for OpenShift",
"tracking": {
"current_release_date": "2025-10-31T12:42:39+00:00",
"generator": {
"date": "2025-10-31T12:42:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2024:8014",
"initial_release_date": "2024-10-22T01:05:39+00:00",
"revision_history": [
{
"date": "2024-10-22T01:05:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-10-22T01:05:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-31T12:42:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "NETOBSERV 1.7 for RHEL 9",
"product": {
"name": "NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9"
}
}
}
],
"category": "product_family",
"name": "Network Observability"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product_id": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba?arch=amd64\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product_id": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a?arch=ppc64le\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product_id": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080?arch=arm64\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product": {
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product_id": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-cli-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product_id": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-console-plugin-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product_id": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-ebpf-agent-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product_id": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-flowlogs-pipeline-rhel9\u0026tag=v1.7.0-67"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product": {
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product_id": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-operator-bundle\u0026tag=1.7.0-86"
}
}
},
{
"category": "product_version",
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product": {
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product_id": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"product_identification_helper": {
"purl": "pkg:oci/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134?arch=s390x\u0026repository_url=registry.redhat.io/network-observability/network-observability-rhel9-operator\u0026tag=v1.7.0-67"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64"
},
"product_reference": "network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64"
},
"product_reference": "network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64"
},
"product_reference": "network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le"
},
"product_reference": "network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le"
},
"product_reference": "network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64 as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le as a component of NETOBSERV 1.7 for RHEL 9",
"product_id": "9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
},
"product_reference": "network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le",
"relates_to_product_reference": "9Base-NETWORK-OBSERVABILITY-1.7.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34155",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:06.929766+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310527"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/parser package of the Golang standard library. Calling any Parse functions on Go source code containing deeply nested literals can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34155"
},
{
"category": "external",
"summary": "RHBZ#2310527",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310527"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34155"
},
{
"category": "external",
"summary": "https://go.dev/cl/611238",
"url": "https://go.dev/cl/611238"
},
{
"category": "external",
"summary": "https://go.dev/issue/69138",
"url": "https://go.dev/issue/69138"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3105",
"url": "https://pkg.go.dev/vuln/GO-2024-3105"
}
],
"release_date": "2024-09-06T21:15:11.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion"
},
{
"cve": "CVE-2024-34156",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2024-09-06T21:20:09.377905+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310528"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the encoding/gob package of the Golang standard library. Calling Decoder.Decoding, a message that contains deeply nested structures, can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in Go\u0027s `encoding/gob` package is of high severity because it exposes applications to potential Denial of Service (DoS) attacks through stack exhaustion. Since `gob` relies on recursive function calls to decode nested structures, an attacker could exploit this by sending crafted messages with excessively deep nesting, causing the application to panic due to stack overflow. This risk is particularly important in scenarios where untrusted or external input is processed, as it can lead to system unavailability or crashes, undermining the reliability and availability of services.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34156"
},
{
"category": "external",
"summary": "RHBZ#2310528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310528"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34156"
},
{
"category": "external",
"summary": "https://go.dev/cl/611239",
"url": "https://go.dev/cl/611239"
},
{
"category": "external",
"summary": "https://go.dev/issue/69139",
"url": "https://go.dev/issue/69139"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3106",
"url": "https://pkg.go.dev/vuln/GO-2024-3106"
}
],
"release_date": "2024-09-06T21:15:12.020000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-34158",
"cwe": {
"id": "CWE-1325",
"name": "Improperly Controlled Sequential Memory Allocation"
},
"discovery_date": "2024-09-06T21:20:12.126400+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310529"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the go/build/constraint package of the Golang standard library. Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-34158"
},
{
"category": "external",
"summary": "RHBZ#2310529",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310529"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-34158"
},
{
"category": "external",
"summary": "https://go.dev/cl/611240",
"url": "https://go.dev/cl/611240"
},
{
"category": "external",
"summary": "https://go.dev/issue/69141",
"url": "https://go.dev/issue/69141"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk",
"url": "https://groups.google.com/g/golang-dev/c/S9POB9NCTdk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-3107",
"url": "https://pkg.go.dev/vuln/GO-2024-3107"
}
],
"release_date": "2024-09-06T21:15:12.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go/build/constraint: golang: Calling Parse on a \"// +build\" build tag line with deeply nested expressions can cause a panic due to stack exhaustion"
},
{
"cve": "CVE-2024-39338",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"discovery_date": "2024-08-13T17:21:32.774718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2304369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Axios HTTP Client. It is vulnerable to a server-side request forgery attack (SSRF) caused by unexpected behavior where requests for path-relative URLs get processed as protocol-relative URLs. This flaw allows an attacker to perform arbitrary requests from the server, potentially accessing internal systems or exfiltrating sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: axios: Server-Side Request Forgery",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as IMPORTANT because it can be exploited remotely with low complexity and without user interaction, it poses a significant risk to confidentiality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39338"
},
{
"category": "external",
"summary": "RHBZ#2304369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases",
"url": "https://github.com/axios/axios/releases"
},
{
"category": "external",
"summary": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html",
"url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
}
],
"release_date": "2024-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: axios: Server-Side Request Forgery"
},
{
"cve": "CVE-2024-43788",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-08-27T17:20:06.890123+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2308193"
}
],
"notes": [
{
"category": "description",
"text": "A DOM Clobbering vulnerability was found in Webpack via `AutoPublicPathRuntimeModule`. DOM Clobbering is a type of code-reuse attack where the attacker first embeds a piece of non-script through seemingly benign HTML markups in the webpage, for example, through a post or comment, and leverages the gadgets (pieces of JS code) living in the existing javascript code to transform it into executable code. This vulnerability can lead to Cross-site scripting (XSS) on websites that include Webpack-generated files and allow users to inject certain scriptless HTML tags with improperly sanitized name or ID attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this issue is classified as moderate rather than important due to the specific conditions required for exploitation. DOM Clobbering, while serious, can only be leveraged in environments where an attacker has the ability to inject unsanitized HTML attributes (e.g., `name` or `id`) into a web page. This limits the attack surface to applications that improperly sanitize user input and rely on Webpack-generated files. Furthermore, the exploitation depends on existing vulnerabilities in the sanitization process, rather than the direct execution of arbitrary scripts. As a result, while the issue can lead to XSS, its impact is constrained by the contextual requirement of HTML injection, lowering its overall severity compared to more direct XSS vectors.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43788"
},
{
"category": "external",
"summary": "RHBZ#2308193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2308193"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43788"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61",
"url": "https://github.com/webpack/webpack/commit/955e057abc6cc83cbc3fa1e1ef67a49758bf5a61"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-08-27T17:15:07.967000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "webpack: DOM Clobbering vulnerability in AutoPublicPathRuntimeModule"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45801",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-16T19:20:09.863249+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312631"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in DOMPurify. This issue may allow an attacker to use specially-crafted HTML to bypass the depth checking or use Prototype Pollution to weaken the depth check, which can lead to cross site scripting (XSS) attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "dompurify: XSS vulnerability via prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in DOMPurify, while significant, is categorized as moderate severity rather than important due to its specific conditions for exploitation. The issue requires not only a sophisticated nesting technique to bypass the depth checks but also the ability to leverage Prototype Pollution to weaken these protections. This makes the attack scenario relatively complex and less likely to be encountered in general use cases. Furthermore, the flaw impacts only certain configurations and usage patterns, thus reducing its immediate risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45801"
},
{
"category": "external",
"summary": "RHBZ#2312631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312631"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45801"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45801",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45801"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/1e520262bf4c66b5efda49e2316d6d1246ca7b21",
"url": "https://github.com/cure53/DOMPurify/commit/1e520262bf4c66b5efda49e2316d6d1246ca7b21"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/commit/26e1d69ca7f769f5c558619d644d90dd8bf26ebc",
"url": "https://github.com/cure53/DOMPurify/commit/26e1d69ca7f769f5c558619d644d90dd8bf26ebc"
},
{
"category": "external",
"summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-mmhx-hmjr-r674",
"url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-mmhx-hmjr-r674"
}
],
"release_date": "2024-09-16T19:16:11.080000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-22T01:05:39+00:00",
"details": "For details on how to apply this update, refer to: \n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:1587047e407a77f7ac1d963cc9bbfdb5c2472554cad8367f0a96a4699528134d_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:7c2c2c0c0c255c1ef1579b63337d35174a330374a7deaff3c3c1e39ff48e89ee_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:bd8b5a7f1f9369c1f6fe3782c79b4145c3467b3f82e083e1eb83d76a8df21fdd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-cli-rhel9@sha256:c469d89f77d04b257c6bf9814a3782540139e35c83ac73c2e5820c20ec2146fd_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:10d159c57623d2e098b401331de93d8d591b78e133785dea89d9694ee76ded0f_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:46cee52d96fee8b3f5cd151c21e5b886841cff53b4d65cb6264d39acd9c6a7cd_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:b811f8d5b133d9a90f575d23f7a91e184ef8b6d640fb0cd7732f155d40f51c86_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-console-plugin-rhel9@sha256:ccf31db5ef85f57422a16a61a5c6aea883396699e1cc8c0f6043d2fc7eb0b8e9_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:8016c95a9891094692764956dc9df211e8a0f8cdcf14e6682565d4c35325e0bf_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:ae64fda5860fa3cbdd9a81d56924cd32d69fbf67804e16cc2e1e5ca6f786dd8b_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:d36488d180acdca0e6b0fbe8dbe77af3464d5b1fc3efc9440ed130fec5e71ebe_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-ebpf-agent-rhel9@sha256:e979023e2e93f1ada9e3fd3e1268b39b4ac1fb9fe51357462e2ac7ddc8c49056_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:54a8042443e480f3543527d6121dbbaab57394554282b8f4fc885a1ba2b28844_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:87f4f7757826faf37710a88be3c2917b855088e02acb73f43eb7a77f61d00d45_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:8bb22f295ec8087a7163997588a4af0dce8f838407aa83f8bd09190a2943ad1e_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-flowlogs-pipeline-rhel9@sha256:b875fece4d49972e278450730f90bb5defa818aa2774dfa0e15d6f36ba50c840_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:268ac72b4a0bf05893cca0924a80ebd2107f3e859329406257da6ce59ec08dfe_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:3a3c70c990bd3a012453857698433d674b98445e55cc9c5c4ed38eea29eb82b1_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:c32c5ec7c6048f652200677c2a9cbde09ed05beeb818e292f21e6a52786b0a02_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-operator-bundle@sha256:ccf531d1181ccd1c6eb9ec45ea20069aa01b2924242596f25e551d055c9a0e1b_ppc64le",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:349de1a5389f131933bf39235705a4aa8137a8d4be561f66aa2b74f986489fba_amd64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:4f9cdf8c1c22a79d0690b18c363ade514262510f5fbb4062746210005e832134_s390x",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:8c5836a79d4f6562ed17db8488422db567f4a920908e1800b770ec04ffa78080_arm64",
"9Base-NETWORK-OBSERVABILITY-1.7.0:network-observability/network-observability-rhel9-operator@sha256:9c2c0e0b8f9c061983f48fca9c18d7a496d38fbc4f8b9274d2fef39a5824c40a_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "dompurify: XSS vulnerability via prototype pollution"
}
]
}
rhsa-2024:10962
Vulnerability from csaf_redhat
Published
2024-12-11 16:47
Modified
2025-10-23 23:53
Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release
Notes
Topic
A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released
Details
Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat OpenShift distributed tracing platform (Jaeger) has been released",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift distributed tracing platform based on Jaeger. Jaeger is a project inspired by Dapper and OpenZipkin. It is a distributed tracing system released as open source by Uber Technologies. It is used for monitoring and troubleshooting microservices-based distributed systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:10962",
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/distributed_tracing/distributed-tracing-platform-jaeger"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-21536",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43796",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43799",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-43800",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45296",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45590",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45811",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-45812",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-47068",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10962.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Jaeger) 3.4 release",
"tracking": {
"current_release_date": "2025-10-23T23:53:36+00:00",
"generator": {
"date": "2025-10-23T23:53:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.9"
}
},
"id": "RHSA-2024:10962",
"initial_release_date": "2024-12-11T16:47:10+00:00",
"revision_history": [
{
"date": "2024-12-11T16:47:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-03-25T20:51:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-23T23:53:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.4",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aeebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256%3A44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3Abf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ac254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ada3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Aa7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Ab7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3A6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3Afed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3A4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3A78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3A3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3Aceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ac81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3Ae537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Abb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Ae7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256%3Ab541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256%3A952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256%3A6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256%3Ab0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256%3A60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256%3A44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256%3Ab9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_id": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256%3Afe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64 as a component of Red Hat OpenShift distributed tracing 3.4",
"product_id": "Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-21536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-10-19T06:00:36.846953+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2319884"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the http-proxy-middleware package. Affected versions of this package are vulnerable to denial of service (DoS) due to an UnhandledPromiseRejection error thrown by micromatch. This flaw allows an attacker to kill the Node.js process and crash the server by requesting certain paths.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "http-proxy-middleware: Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-21536"
},
{
"category": "external",
"summary": "RHBZ#2319884",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2319884"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21536"
},
{
"category": "external",
"summary": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a",
"url": "https://gist.github.com/mhassan1/28be67266d82a53708ed59ce5dc3c94a"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/0b4274e8cc9e9a2c5a06f35fbf456ccfcebc55a5"
},
{
"category": "external",
"summary": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22",
"url": "https://github.com/chimurai/http-proxy-middleware/commit/788b21e4aff38332d6319557d4a5b1b13b1f9a22"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906",
"url": "https://security.snyk.io/vuln/SNYK-JS-HTTPPROXYMIDDLEWARE-8229906"
}
],
"release_date": "2024-10-19T05:00:04.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Red Hat Product Security does not have any mitigation recommendations at this time.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "http-proxy-middleware: Denial of Service"
},
{
"cve": "CVE-2024-43796",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:28.106254+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311152"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Express. This vulnerability allows untrusted code execution via passing untrusted user input to response.redirect(), even if the input is sanitized.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: Improper Input Handling in Express Redirects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43796"
},
{
"category": "external",
"summary": "RHBZ#2311152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43796"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553",
"url": "https://github.com/expressjs/express/commit/54271f69b511fea198471e6ff3400ab805d6b553"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-qw6h-vgh9-j6wx"
}
],
"release_date": "2024-09-10T15:15:17.510000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "express: Improper Input Handling in Express Redirects"
},
{
"cve": "CVE-2024-43799",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:30.869487+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311153"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Send library. This vulnerability allows remote code execution via untrusted input passed to the SendStream.redirect() function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "send: Code Execution Vulnerability in Send Library",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43799"
},
{
"category": "external",
"summary": "RHBZ#2311153",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311153"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43799"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35",
"url": "https://github.com/pillarjs/send/commit/ae4f2989491b392ae2ef3b0015a019770ae65d35"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg",
"url": "https://github.com/pillarjs/send/security/advisories/GHSA-m6fv-jmcg-4jfg"
}
],
"release_date": "2024-09-10T15:15:17.727000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "send: Code Execution Vulnerability in Send Library"
},
{
"cve": "CVE-2024-43800",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-10T15:30:33.631718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311154"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in serve-static. This issue may allow the execution of untrusted code via passing sanitized yet untrusted user input to redirect().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "serve-static: Improper Sanitization in serve-static",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "rhdh-hub-container 1.2 and 1.3 have included patches for this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-43800"
},
{
"category": "external",
"summary": "RHBZ#2311154",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311154"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-43800"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b",
"url": "https://github.com/expressjs/serve-static/commit/0c11fad159898cdc69fd9ab63269b72468ecaf6b"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa",
"url": "https://github.com/expressjs/serve-static/commit/ce730896fddce1588111d9ef6fdf20896de5c6fa"
},
{
"category": "external",
"summary": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p",
"url": "https://github.com/expressjs/serve-static/security/advisories/GHSA-cm22-4g7w-348p"
}
],
"release_date": "2024-09-10T15:15:17.937000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "serve-static: Improper Sanitization in serve-static"
},
{
"cve": "CVE-2024-45296",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2024-09-09T19:20:18.127723+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2310908"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "path-to-regexp: Backtracking regular expressions cause ReDoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45296"
},
{
"category": "external",
"summary": "RHBZ#2310908",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45296"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f",
"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6",
"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"
},
{
"category": "external",
"summary": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j",
"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"
}
],
"release_date": "2024-09-09T19:15:13.330000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "path-to-regexp: Backtracking regular expressions cause ReDoS"
},
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"discovery_date": "2024-09-10T16:20:29.292154+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2311171"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in body-parser. This vulnerability causes denial of service via a specially crafted payload when the URL encoding is enabled.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "body-parser: Denial of Service Vulnerability in body-parser",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45590"
},
{
"category": "external",
"summary": "RHBZ#2311171",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2311171"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45590"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce",
"url": "https://github.com/expressjs/body-parser/commit/b2695c4450f06ba3b0ccf48d872a229bb41c9bce"
},
{
"category": "external",
"summary": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7",
"url": "https://github.com/expressjs/body-parser/security/advisories/GHSA-qwcr-r2fm-qrc7"
}
],
"release_date": "2024-09-10T16:15:21.083000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "body-parser: Denial of Service Vulnerability in body-parser"
},
{
"cve": "CVE-2024-45811",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"discovery_date": "2024-09-17T20:00:49.944925+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312930"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ViteJS. `@fs` denies access to files outside of Vite serving allow list. Adding `?import\u0026raw` to the URL bypasses this limitation and returns the file content if it exists, which can allow an attacker to access arbitrary files via the browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: server.fs.deny is bypassed when using `?import\u0026raw`",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate rather than high severity because it requires specific conditions for exploitation. The attacker must have access to the Vite server, which typically runs in a local development environment rather than in production. Additionally, the bypass allows file access only if the file path is already known or predictable, limiting the attacker\u0027s ability to arbitrarily explore the file system. While it exposes file content outside the Vite serving allow list, the scope of access is constrained, and the impact can be mitigated by proper server configurations and deployment practices.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45811"
},
{
"category": "external",
"summary": "RHBZ#2312930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312930"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45811",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45811"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45811"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite",
"url": "https://github.com/vitejs/vite"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249",
"url": "https://github.com/vitejs/vite/commit/4573a6fd6f1b097fb7296a3e135e0646b996b249"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34",
"url": "https://github.com/vitejs/vite/commit/6820bb3b9a54334f3268fc5ee1e967d2e1c0db34"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd",
"url": "https://github.com/vitejs/vite/commit/8339d7408668686bae56eaccbfdc7b87612904bd"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6",
"url": "https://github.com/vitejs/vite/commit/a6da45082b6e73ddfdcdcc06bb5414f976a388d6"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7",
"url": "https://github.com/vitejs/vite/commit/b901438f99e667f76662840826eec91c8ab3b3e7"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-9cwx-2883-4wfx"
}
],
"release_date": "2024-09-17T18:44:12+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: server.fs.deny is bypassed when using `?import\u0026raw`"
},
{
"cve": "CVE-2024-45812",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-17T20:20:07.064245+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2312935"
}
],
"notes": [
{
"category": "description",
"text": "A DOM clobbering vulnerability was found in ViteJS. This may lead to cross-site scripting (XSS) attacks on websites that include Vite-bundled files configured with an output format of cjs, iife, or umd, and allow users to inject certain scriptless HTML tags without properly sanitizing the name or id attributes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue is classified as moderate severity rather than important due to the specific conditions required to exploit the vulnerability. While DOM Clobbering can lead to Cross-Site Scripting (XSS), the attack surface is relatively limited. Exploitation is contingent on the presence of unsanitized user-supplied HTML with certain scriptless attributes (`name`, `id`) and the use of particular Vite build outputs (`cjs`, `iife`, `umd`). In environments following proper input sanitization practices, the risk is significantly mitigated. Moreover, the vulnerability does not enable direct code injection or compromise by default but rather leverages existing script elements, reducing the likelihood of widespread exploitation compared to higher severity issues.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-45812"
},
{
"category": "external",
"summary": "RHBZ#2312935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2312935"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-45812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45812"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-45812"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad",
"url": "https://github.com/vitejs/vite/commit/ade1d89660e17eedfd35652165b0c26905259fad"
},
{
"category": "external",
"summary": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3",
"url": "https://github.com/vitejs/vite/security/advisories/GHSA-64vr-g452-qvp3"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986",
"url": "https://github.com/webpack/webpack/security/advisories/GHSA-4vvj-4cpr-p986"
},
{
"category": "external",
"summary": "https://research.securitum.com/xss-in-amp4email-dom-clobbering",
"url": "https://research.securitum.com/xss-in-amp4email-dom-clobbering"
},
{
"category": "external",
"summary": "https://scnps.co/papers/sp23_domclob.pdf",
"url": "https://scnps.co/papers/sp23_domclob.pdf"
}
],
"release_date": "2024-09-17T20:15:06.037000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "vite: XSS via DOM Clobbering gadget found in vite bundled scripts"
},
{
"cve": "CVE-2024-47068",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2024-09-23T16:20:20.383320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2314249"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Rollup module bundler for JavaScript. Certain versions are susceptible to a DOM Clobbering vulnerability when bundling scripts with properties from `import.meta` such as `import.meta.url` in the `cjs`/`umd`/`iife` format. The DOM Clobbering gadget can lead to cross-site scripting (XSS) in web pages where scriptless attacker-controlled HTML elements are present, for example, an `img` tag with an unsanitized `name` attribute.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as moderate severity rather than important because it requires a specific and relatively uncommon attack vector to exploit\u2014namely, attacker-controlled scriptless HTML elements, such as an unsanitized name attribute in an img tag, which are typically less prevalent in well-maintained web applications. Additionally, the impact is limited to scenarios where import.meta is improperly handled in specific module formats (`cjs`, `umd`, `iife`), and the vulnerability can only lead to cross-site scripting (XSS) under specific conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-47068"
},
{
"category": "external",
"summary": "RHBZ#2314249",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2314249"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-47068"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L157-L162"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185",
"url": "https://github.com/rollup/rollup/blob/b86ffd776cfa906573d36c3f019316d02445d9ef/src/ast/nodes/MetaProperty.ts#L180-L185"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4",
"url": "https://github.com/rollup/rollup/commit/2ef77c00ec2635d42697cff2c0567ccc8db34fb4"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541",
"url": "https://github.com/rollup/rollup/commit/e2552c9e955e0a61f70f508200ee9f752f85a541"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-gcx4-mw62-g8wm"
}
],
"release_date": "2024-09-23T16:15:06.947000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-12-11T16:47:10+00:00",
"details": "For details on how to apply this update, refer to:\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/h tml/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:10962"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:2a199dfb119a0a9e23cfb6ad30f3715c9219bb8fa880a8a41977829d763a4ca5_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:3a719c39310ec4c664a3e49bf899f070e46be72b7594ce73d335c549b474146f_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:a7ae101cffca890f8665237b153e97b6dc1b3a6b672eaeccdbe4bfbd7aedce17_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-agent-rhel8@sha256:b541c30e0c0180612046cc31c639b219f6e9f4c7ae2e631b6f03404b7d55ee1d_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:952f5a651c58cf3f86ded53cdd03649e3c7cb5c91199fd42bf2333e2ae48cce2_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:b7bcd8d1986f24bc0996360cc6c5eff80d57b3802969740a44ce98484113c1c8_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:ceab26a0939aeb7c4280ff8ff8c8607087838ef37a429e5f8d5f2fa663f5e4fa_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8@sha256:eebbda52e7853c58f638a0e9ac19f2523396358b92a08c026233b6a9b6e3eb38_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:00481eba92932c2e8dcff9c2e74414423a95cdf7e158a081ac9b6ce64e095053_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:0e8aefb95c5605a7b986c2765417118217962a69a803b38b0d5b5da9ee18ed7a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:6a073cd60d81bff01283dd4cbf680cfc7a17aa42cd262ae5ad4460142a2b5ec0_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-collector-rhel8@sha256:bf43ff8bf24eaf6694abfe3ba0ad34223743ac80473a7284aeb6e30c8b6f7a09_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:43a162e333dc9d7b3d78102ea1ad0edfdc5f83eda53416c26c352f64ce03648e_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6d2163a0d54b4ca742e2669a1cf6145abaf8681fe68bfaf7b0adf3e386979f5a_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:b0a964e6cfabcab6b24a7caaac935304ab00bf5aac4a2895bebd78dc8dcc93cc_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c81395f94df15ee18eefd08b0b0e83cac7e7a266558a1458cfa769504c49a1c5_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:60aecc2ebb419a5dd979e503b9475af9b1def1ca82fcd9d4b96a05bc3a0686d6_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:8a85c82050ca4a430ebeabb6192debca6daee99d9baa0cf96b156790f0984d02_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fd196cb2a9c3780ca1de2a6974bd3c2042c09bebf8a5c5a27bf5e51140a14e33_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8@sha256:fed0a62dffeb3fc63a57c54b66194d1fb754cb89ec0d8aa0f9a303d3fc494857_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:44d844bd4f1c83b7ee66645a8f0e3c71c5f3fa84ee62553058c15106d8782a69_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:c254cbefa1a0d57fbd1a4925254de1d6568cafa6b26be59db1df38142ab2256c_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e537e8f52fe57bb5ec047054e7a5f7e26a96d5ac52b85623cf56c946c93032cf_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-ingester-rhel8@sha256:e8cc4fc4b0d5b3238a6441acd162d5e8bba35c51a1bab2f2ff87b812c5ded866_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-operator-bundle@sha256:44b22b250cdf29c29cf8c71941ea9ffd84c8bc7f4fddffafcd1b194a125d9028_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:78b4c8cb7e68b33fbd0cfb502a2d4e3ca09eeb6168d525c80ae0a45775364952_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829_amd64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:e7814650195a4ce28137f26da766217ed09dc2d974146b73fefb50b3e3c63749_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-query-rhel8@sha256:fe5c0636b57f316157812488029f3346363031b3e216dbc82ed9897a2d1347ab_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:4347e8a28b5a964fcab8ab237e5d93aef6f07ec9400e34a539dccb9d101b6fde_arm64",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:b9b2c61785f82ca784c957898412726a37c4fe81351c1bf7538d45229adabd8b_s390x",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:bb1d9ea1ef3e98740a6a4fd64e27c74b9ecc6849a3b4adc8c1d3a0289adca4f3_ppc64le",
"Red Hat OpenShift distributed tracing 3.4:registry.redhat.io/rhosdt/jaeger-rhel8-operator@sha256:da3915ec0e08f9e14be5520bc92a318308a4e2a514f19f74a54b8c922f7df9df_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS"
}
]
}
wid-sec-w-2024-3250
Vulnerability from csaf_certbund
Published
2024-10-21 22:00
Modified
2025-01-14 23:00
Summary
Red Hat OpenShift: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuführen, Daten zu manipulieren, vertrauliche Informationen preiszugeben, einen Cross-Site-Scripting-Angriff durchzuführen und beliebigen Code auszuführen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren, Daten zu manipulieren, vertrauliche Informationen preiszugeben, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren und beliebigen Code auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3250 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3250.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3250 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3250"
},
{
"category": "external",
"summary": "Red Hat Advisory vom 2024-10-21",
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8229 vom 2024-10-23",
"url": "https://access.redhat.com/errata/RHSA-2024:8229"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8232 vom 2024-10-23",
"url": "https://access.redhat.com/errata/RHSA-2024:8232"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8260 vom 2024-10-24",
"url": "https://access.redhat.com/errata/RHSA-2024:8260"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8263 vom 2024-10-24",
"url": "https://access.redhat.com/errata/RHSA-2024:8263"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8581 vom 2024-10-29",
"url": "https://access.redhat.com/errata/RHSA-2024:8581"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8676 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8425 vom 2024-10-31",
"url": "https://access.redhat.com/errata/RHSA-2024:8425"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8337 vom 2024-10-31",
"url": "https://access.redhat.com/errata/RHSA-2024:8337"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8677 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8677"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8428 vom 2024-10-31",
"url": "https://access.redhat.com/errata/RHSA-2024:8428"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8692"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8688 vom 2024-11-06",
"url": "https://access.redhat.com/errata/RHSA-2024:8688"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8697 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8697"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8700 vom 2024-11-08",
"url": "https://access.redhat.com/errata/RHSA-2024:8700"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8981 vom 2024-11-13",
"url": "https://access.redhat.com/errata/RHSA-2024:8981"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10186 vom 2024-11-22",
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8704 vom 2024-12-02",
"url": "https://access.redhat.com/errata/RHSA-2024:8704"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10762 vom 2024-12-03",
"url": "https://access.redhat.com/errata/RHSA-2024:10762"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10865 vom 2024-12-05",
"url": "https://access.redhat.com/errata/RHSA-2024:10865"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10857 vom 2024-12-05",
"url": "https://access.redhat.com/errata/RHSA-2024:10857"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10906 vom 2024-12-10",
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10895 vom 2024-12-11",
"url": "https://access.redhat.com/errata/RHSA-2024:10895"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11023 vom 2024-12-12",
"url": "https://access.redhat.com/errata/RHSA-2024:11023"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11293 vom 2024-12-17",
"url": "https://access.redhat.com/errata/RHSA-2024:11293"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0079 vom 2025-01-08",
"url": "https://access.redhat.com/errata/RHSA-2025:0079"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0164 vom 2025-01-09",
"url": "https://access.redhat.com/errata/RHSA-2025:0164"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0323 vom 2025-01-15",
"url": "https://access.redhat.com/errata/RHSA-2025:0323"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-14T23:00:00.000+00:00",
"generator": {
"date": "2025-01-15T09:13:29.036+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-3250",
"initial_release_date": "2024-10-21T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-10-21T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-10-22T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-23T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-29T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-30T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-06T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-07T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-10T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-12T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-21T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-02T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-03T23:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-05T23:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-09T23:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-11T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-12T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-17T23:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-07T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-08T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-14T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "20"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "Advanced Cluster Security for Kubernetes 4",
"product": {
"name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
"product_id": "T027916",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "Kube Descheduler Operator 5",
"product": {
"name": "Red Hat OpenShift Kube Descheduler Operator 5",
"product_id": "T033270",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:kube_descheduler_operator_5"
}
}
},
{
"category": "product_version_range",
"name": "Network Observability \u003c1.7.0",
"product": {
"name": "Red Hat OpenShift Network Observability \u003c1.7.0",
"product_id": "T038514"
}
},
{
"category": "product_version",
"name": "Network Observability 1.7.0",
"product": {
"name": "Red Hat OpenShift Network Observability 1.7.0",
"product_id": "T038514-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:network_observability__1.7.0"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.17.2",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.17.2",
"product_id": "T038527"
}
},
{
"category": "product_version",
"name": "Container Platform 4.17.2",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17.2",
"product_id": "T038527-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.17.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c4.14.40",
"product": {
"name": "Red Hat OpenShift \u003c4.14.40",
"product_id": "T038844"
}
},
{
"category": "product_version",
"name": "4.14.40",
"product": {
"name": "Red Hat OpenShift 4.14.40",
"product_id": "T038844-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.14.40"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.17.4",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.17.4",
"product_id": "T038989"
}
},
{
"category": "product_version",
"name": "Container Platform 4.17.4",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17.4",
"product_id": "T038989-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.17.4"
}
}
},
{
"category": "product_version_range",
"name": "Data Foundation \u003c4.14.13",
"product": {
"name": "Red Hat OpenShift Data Foundation \u003c4.14.13",
"product_id": "T040215"
}
},
{
"category": "product_version",
"name": "Data Foundation 4.14.13",
"product": {
"name": "Red Hat OpenShift Data Foundation 4.14.13",
"product_id": "T040215-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:data_foundation__4.14.13"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34155",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Schwachstellen betreffen die Pakete go/parser, encoding/gob und go/build/constraint der Golang-Standardbibliothek aufgrund einer unsachgem\u00e4\u00dfen Behandlung von tief verschachtelten Literalen, Strukturen und Ausdr\u00fccken, was eine Stack-Exhaustion erm\u00f6glicht. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen \u0027Denial of Service\u0027-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-34155"
},
{
"cve": "CVE-2024-34156",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Schwachstellen betreffen die Pakete go/parser, encoding/gob und go/build/constraint der Golang-Standardbibliothek aufgrund einer unsachgem\u00e4\u00dfen Behandlung von tief verschachtelten Literalen, Strukturen und Ausdr\u00fccken, was eine Stack-Exhaustion erm\u00f6glicht. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen \u0027Denial of Service\u0027-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-34156"
},
{
"cve": "CVE-2024-34158",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Schwachstellen betreffen die Pakete go/parser, encoding/gob und go/build/constraint der Golang-Standardbibliothek aufgrund einer unsachgem\u00e4\u00dfen Behandlung von tief verschachtelten Literalen, Strukturen und Ausdr\u00fccken, was eine Stack-Exhaustion erm\u00f6glicht. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen \u0027Denial of Service\u0027-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-34158"
},
{
"cve": "CVE-2024-39338",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat OpenShift. Dieser Fehler besteht im Axios HTTP-Client aufgrund einer unsachgem\u00e4\u00dfen Behandlung von pfadrelativen URLs, die f\u00e4lschlicherweise als protokollrelative URLs verarbeitet werden, wodurch ein Server-Side Request Forgery (SSRF)-Angriff m\u00f6glich ist. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Anfragen zu manipulieren und vertrauliche Informationen preiszugeben."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-39338"
},
{
"cve": "CVE-2024-43788",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden in von Webpack generierten Dateien nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich. Die Ausnutzung dieser Schwachstelle erfordert die F\u00e4higkeit, nicht bereinigte HTML-Attribute einzuschleusen, und ist von bestimmten Webpack-generierten Dateien abh\u00e4ngig, was die Angriffsfl\u00e4che auf schlecht bereinigte Eingabeszenarien begrenzt."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-43788"
},
{
"cve": "CVE-2024-43796",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Fehler betreffen Express, die Send-Bibliothek und die Serve-static-Komponente aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung in bestimmten Funktionen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-43796"
},
{
"cve": "CVE-2024-43799",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Fehler betreffen Express, die Send-Bibliothek und die Serve-static-Komponente aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung in bestimmten Funktionen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-43799"
},
{
"cve": "CVE-2024-43800",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Fehler betreffen Express, die Send-Bibliothek und die Serve-static-Komponente aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung in bestimmten Funktionen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-43800"
},
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat OpenShift aufgrund einer ineffizienten Generierung regul\u00e4rer Ausdr\u00fccke im path-to-regexp-Paket. Bestimmte Pfadzeichenfolgen k\u00f6nnen zu komplexen regul\u00e4ren Ausdr\u00fccken f\u00fchren, die die Leistung beeintr\u00e4chtigen und die Ereignisschleife blockieren. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat OpenShift aufgrund einer unsachgem\u00e4\u00dfen Behandlung von URL-kodierten Payloads im Modul body-parser. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen, indem er eine manipulierte Payload sendet, wenn die URL-Kodierung aktiviert ist."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-45801",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden in DOMPurify nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Die Sicherheitsl\u00fccke erfordert die Umgehung von Depth Checks durch Nesting-Techniken und die Ausnutzung von Prototype Pollution."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-45801"
}
]
}
wid-sec-w-2024-3344
Vulnerability from csaf_certbund
Published
2024-11-05 23:00
Modified
2024-12-18 23:00
Summary
HCL BigFix WebUI: Mehrere Open Source Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
BigFix ist eine Lösung zum Erkennen und Verwalten von physischen und virtuellen Endpunkten.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in HCL BigFix WebU ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.
Betroffene Betriebssysteme
- Linux
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "BigFix ist eine L\u00f6sung zum Erkennen und Verwalten von physischen und virtuellen Endpunkten.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in HCL BigFix WebU ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3344 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3344.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3344 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3344"
},
{
"category": "external",
"summary": "HCL BigFix Security Advisory vom 2024-11-05",
"url": "https://support.hcl-software.com/community?id=community_blog\u0026sys_id=e8e9f77b936dd6100dddf87d1dba103d"
},
{
"category": "external",
"summary": "HCL Security Bulletin vom 2024-12-18",
"url": "https://support.hcl-software.com/community?id=community_blog\u0026sys_id=1af3c435fb2216d0db10f2797befdc15"
}
],
"source_lang": "en-US",
"title": "HCL BigFix WebUI: Mehrere Open Source Schwachstellen",
"tracking": {
"current_release_date": "2024-12-18T23:00:00.000+00:00",
"generator": {
"date": "2024-12-19T09:12:54.292+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-3344",
"initial_release_date": "2024-11-05T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-05T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-12-18T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "HCL BigFix",
"product": {
"name": "HCL BigFix",
"product_id": "T036098",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:bigfix:webui"
}
}
},
{
"category": "product_version",
"name": "Server Automation",
"product": {
"name": "HCL BigFix Server Automation",
"product_id": "T039915",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:bigfix:server_automation"
}
}
}
],
"category": "product_name",
"name": "BigFix"
}
],
"category": "vendor",
"name": "HCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-26159",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2023-26159"
},
{
"cve": "CVE-2023-45857",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2023-45857"
},
{
"cve": "CVE-2024-21501",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-21501"
},
{
"cve": "CVE-2024-33883",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-33883"
},
{
"cve": "CVE-2024-35255",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-35255"
},
{
"cve": "CVE-2024-38996",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-38996"
},
{
"cve": "CVE-2024-43796",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-43796"
},
{
"cve": "CVE-2024-43799",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-43799"
},
{
"cve": "CVE-2024-43800",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-43800"
},
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-8372",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-8372"
},
{
"cve": "CVE-2024-8373",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-8373"
}
]
}
WID-SEC-W-2024-3250
Vulnerability from csaf_certbund
Published
2024-10-21 22:00
Modified
2025-01-14 23:00
Summary
Red Hat OpenShift: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuführen, Daten zu manipulieren, vertrauliche Informationen preiszugeben, einen Cross-Site-Scripting-Angriff durchzuführen und beliebigen Code auszuführen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren, Daten zu manipulieren, vertrauliche Informationen preiszugeben, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren und beliebigen Code auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3250 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3250.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3250 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3250"
},
{
"category": "external",
"summary": "Red Hat Advisory vom 2024-10-21",
"url": "https://access.redhat.com/errata/RHSA-2024:8014"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8229 vom 2024-10-23",
"url": "https://access.redhat.com/errata/RHSA-2024:8229"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8232 vom 2024-10-23",
"url": "https://access.redhat.com/errata/RHSA-2024:8232"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8260 vom 2024-10-24",
"url": "https://access.redhat.com/errata/RHSA-2024:8260"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8263 vom 2024-10-24",
"url": "https://access.redhat.com/errata/RHSA-2024:8263"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8581 vom 2024-10-29",
"url": "https://access.redhat.com/errata/RHSA-2024:8581"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8676 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8425 vom 2024-10-31",
"url": "https://access.redhat.com/errata/RHSA-2024:8425"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8337 vom 2024-10-31",
"url": "https://access.redhat.com/errata/RHSA-2024:8337"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8677 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8677"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8428 vom 2024-10-31",
"url": "https://access.redhat.com/errata/RHSA-2024:8428"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8692"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8688 vom 2024-11-06",
"url": "https://access.redhat.com/errata/RHSA-2024:8688"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8697 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8697"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8700 vom 2024-11-08",
"url": "https://access.redhat.com/errata/RHSA-2024:8700"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8981 vom 2024-11-13",
"url": "https://access.redhat.com/errata/RHSA-2024:8981"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10186 vom 2024-11-22",
"url": "https://access.redhat.com/errata/RHSA-2024:10186"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8704 vom 2024-12-02",
"url": "https://access.redhat.com/errata/RHSA-2024:8704"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10762 vom 2024-12-03",
"url": "https://access.redhat.com/errata/RHSA-2024:10762"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10865 vom 2024-12-05",
"url": "https://access.redhat.com/errata/RHSA-2024:10865"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10857 vom 2024-12-05",
"url": "https://access.redhat.com/errata/RHSA-2024:10857"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10906 vom 2024-12-10",
"url": "https://access.redhat.com/errata/RHSA-2024:10906"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:10895 vom 2024-12-11",
"url": "https://access.redhat.com/errata/RHSA-2024:10895"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11023 vom 2024-12-12",
"url": "https://access.redhat.com/errata/RHSA-2024:11023"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:11293 vom 2024-12-17",
"url": "https://access.redhat.com/errata/RHSA-2024:11293"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0079 vom 2025-01-08",
"url": "https://access.redhat.com/errata/RHSA-2025:0079"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0164 vom 2025-01-09",
"url": "https://access.redhat.com/errata/RHSA-2025:0164"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0323 vom 2025-01-15",
"url": "https://access.redhat.com/errata/RHSA-2025:0323"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-14T23:00:00.000+00:00",
"generator": {
"date": "2025-01-15T09:13:29.036+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-3250",
"initial_release_date": "2024-10-21T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-10-21T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-10-22T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-23T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-29T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-30T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-06T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-07T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-10T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-12T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-21T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-02T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-03T23:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-05T23:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-09T23:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-11T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-12T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-12-17T23:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-07T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-08T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-14T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "20"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "Advanced Cluster Security for Kubernetes 4",
"product": {
"name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
"product_id": "T027916",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "Kube Descheduler Operator 5",
"product": {
"name": "Red Hat OpenShift Kube Descheduler Operator 5",
"product_id": "T033270",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:kube_descheduler_operator_5"
}
}
},
{
"category": "product_version_range",
"name": "Network Observability \u003c1.7.0",
"product": {
"name": "Red Hat OpenShift Network Observability \u003c1.7.0",
"product_id": "T038514"
}
},
{
"category": "product_version",
"name": "Network Observability 1.7.0",
"product": {
"name": "Red Hat OpenShift Network Observability 1.7.0",
"product_id": "T038514-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:network_observability__1.7.0"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.17.2",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.17.2",
"product_id": "T038527"
}
},
{
"category": "product_version",
"name": "Container Platform 4.17.2",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17.2",
"product_id": "T038527-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.17.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c4.14.40",
"product": {
"name": "Red Hat OpenShift \u003c4.14.40",
"product_id": "T038844"
}
},
{
"category": "product_version",
"name": "4.14.40",
"product": {
"name": "Red Hat OpenShift 4.14.40",
"product_id": "T038844-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.14.40"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.17.4",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.17.4",
"product_id": "T038989"
}
},
{
"category": "product_version",
"name": "Container Platform 4.17.4",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17.4",
"product_id": "T038989-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.17.4"
}
}
},
{
"category": "product_version_range",
"name": "Data Foundation \u003c4.14.13",
"product": {
"name": "Red Hat OpenShift Data Foundation \u003c4.14.13",
"product_id": "T040215"
}
},
{
"category": "product_version",
"name": "Data Foundation 4.14.13",
"product": {
"name": "Red Hat OpenShift Data Foundation 4.14.13",
"product_id": "T040215-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:data_foundation__4.14.13"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-34155",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Schwachstellen betreffen die Pakete go/parser, encoding/gob und go/build/constraint der Golang-Standardbibliothek aufgrund einer unsachgem\u00e4\u00dfen Behandlung von tief verschachtelten Literalen, Strukturen und Ausdr\u00fccken, was eine Stack-Exhaustion erm\u00f6glicht. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen \u0027Denial of Service\u0027-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-34155"
},
{
"cve": "CVE-2024-34156",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Schwachstellen betreffen die Pakete go/parser, encoding/gob und go/build/constraint der Golang-Standardbibliothek aufgrund einer unsachgem\u00e4\u00dfen Behandlung von tief verschachtelten Literalen, Strukturen und Ausdr\u00fccken, was eine Stack-Exhaustion erm\u00f6glicht. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen \u0027Denial of Service\u0027-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-34156"
},
{
"cve": "CVE-2024-34158",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Schwachstellen betreffen die Pakete go/parser, encoding/gob und go/build/constraint der Golang-Standardbibliothek aufgrund einer unsachgem\u00e4\u00dfen Behandlung von tief verschachtelten Literalen, Strukturen und Ausdr\u00fccken, was eine Stack-Exhaustion erm\u00f6glicht. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen \u0027Denial of Service\u0027-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-34158"
},
{
"cve": "CVE-2024-39338",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat OpenShift. Dieser Fehler besteht im Axios HTTP-Client aufgrund einer unsachgem\u00e4\u00dfen Behandlung von pfadrelativen URLs, die f\u00e4lschlicherweise als protokollrelative URLs verarbeitet werden, wodurch ein Server-Side Request Forgery (SSRF)-Angriff m\u00f6glich ist. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Anfragen zu manipulieren und vertrauliche Informationen preiszugeben."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-39338"
},
{
"cve": "CVE-2024-43788",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden in von Webpack generierten Dateien nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich. Die Ausnutzung dieser Schwachstelle erfordert die F\u00e4higkeit, nicht bereinigte HTML-Attribute einzuschleusen, und ist von bestimmten Webpack-generierten Dateien abh\u00e4ngig, was die Angriffsfl\u00e4che auf schlecht bereinigte Eingabeszenarien begrenzt."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-43788"
},
{
"cve": "CVE-2024-43796",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Fehler betreffen Express, die Send-Bibliothek und die Serve-static-Komponente aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung in bestimmten Funktionen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-43796"
},
{
"cve": "CVE-2024-43799",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Fehler betreffen Express, die Send-Bibliothek und die Serve-static-Komponente aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung in bestimmten Funktionen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-43799"
},
{
"cve": "CVE-2024-43800",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat OpenShift. Diese Fehler betreffen Express, die Send-Bibliothek und die Serve-static-Komponente aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung in bestimmten Funktionen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-43800"
},
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat OpenShift aufgrund einer ineffizienten Generierung regul\u00e4rer Ausdr\u00fccke im path-to-regexp-Paket. Bestimmte Pfadzeichenfolgen k\u00f6nnen zu komplexen regul\u00e4ren Ausdr\u00fccken f\u00fchren, die die Leistung beeintr\u00e4chtigen und die Ereignisschleife blockieren. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat OpenShift aufgrund einer unsachgem\u00e4\u00dfen Behandlung von URL-kodierten Payloads im Modul body-parser. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen, indem er eine manipulierte Payload sendet, wenn die URL-Kodierung aktiviert ist."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-45801",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift existiert eine Cross-Site Scripting Schwachstelle. HTML und Script-Eingaben werden in DOMPurify nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstelle beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren. Die Sicherheitsl\u00fccke erfordert die Umgehung von Depth Checks durch Nesting-Techniken und die Ausnutzung von Prototype Pollution."
}
],
"product_status": {
"known_affected": [
"T027916",
"T038989",
"67646",
"T033270",
"T038527",
"T040215",
"T038844",
"T038514"
]
},
"release_date": "2024-10-21T22:00:00.000+00:00",
"title": "CVE-2024-45801"
}
]
}
wid-sec-w-2025-0043
Vulnerability from csaf_certbund
Published
2025-01-12 23:00
Modified
2025-01-12 23:00
Summary
IBM QRadar SIEM (Log Source Management App): Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff
Ein entfernter anonymer Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um einen Cross-Site-Scripting-Angriff zu starten, beliebigen Code auszuführen, einen Denial-of-Service-Zustand zu erzeugen, Daten zu manipulieren, vertrauliche Informationen offenzulegen und Sicherheitsmaßnahmen zu umgehen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter anonymer Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um einen Cross-Site-Scripting-Angriff zu starten, beliebigen Code auszuf\u00fchren, einen Denial-of-Service-Zustand zu erzeugen, Daten zu manipulieren, vertrauliche Informationen offenzulegen und Sicherheitsma\u00dfnahmen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0043 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0043.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0043 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0043"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2025-01-12",
"url": "https://www.ibm.com/support/pages/node/7180725"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM (Log Source Management App): Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-12T23:00:00.000+00:00",
"generator": {
"date": "2025-01-13T09:08:15.486+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2025-0043",
"initial_release_date": "2025-01-12T23:00:00.000+00:00",
"revision_history": [
{
"date": "2025-01-12T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Log Source Management App \u003c7.0.11",
"product": {
"name": "IBM QRadar SIEM Log Source Management App \u003c7.0.11",
"product_id": "T040117"
}
},
{
"category": "product_version",
"name": "Log Source Management App 7.0.11",
"product": {
"name": "IBM QRadar SIEM Log Source Management App 7.0.11",
"product_id": "T040117-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:log_source_management_app__7.0.11"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-43788",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-43788"
},
{
"cve": "CVE-2024-43796",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-43796"
},
{
"cve": "CVE-2024-43799",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-43799"
},
{
"cve": "CVE-2024-43800",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-43800"
},
{
"cve": "CVE-2024-47068",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-47068"
},
{
"cve": "CVE-2024-47875",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM Log Source Management App existieren mehrere Cross-Site Scripting Schwachstellen. HTML und Script-Eingaben werden nicht ordnungsgem\u00e4\u00df \u00fcberpr\u00fcft, bevor sie an den Benutzer zur\u00fcckgegeben werden. Ein entfernter, anonymer Angreifer kann durch Ausnutzung dieser Schwachstellen beliebigen HTML- und Script-Code durch den Browser des Benutzers im Kontext der betroffenen Seite ausf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-47875"
},
{
"cve": "CVE-2024-21536",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-21536"
},
{
"cve": "CVE-2024-21538",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-21538"
},
{
"cve": "CVE-2024-33883",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-33883"
},
{
"cve": "CVE-2024-37890",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-37890"
},
{
"cve": "CVE-2024-4067",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-4067"
},
{
"cve": "CVE-2024-4068",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-4068"
},
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-48948",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-48948"
},
{
"cve": "CVE-2024-48949",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-48949"
},
{
"cve": "CVE-2024-52798",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-52798"
},
{
"cve": "CVE-2024-55565",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App. Diese Schwachstellen bestehen in mehreren Modulen und Bibliotheken wie Node.js, dem expressjs body-parser oder nanoid aufgrund von Problemen wie unsachgem\u00e4\u00dfer Eingabebereinigung, Regular Expression Backtracking, Null-Pointer-Dereferenzen, Memory Exhaustion und unsachgem\u00e4\u00dfer Behandlung von nicht ganzzahligen Werten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-55565"
},
{
"cve": "CVE-2024-45801",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in IBM QRadar SIEM Log Source Management App. Diese Schwachstelle betrifft DOMPurify aufgrund eines Prototyp-Verschmutzungsfehlers in der Tiefenpr\u00fcfung. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um beliebigen Code auszuf\u00fchren oder einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-45801"
},
{
"cve": "CVE-2024-42459",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App . Diese Schwachstellen betreffen das Node.js Elliptic-Modul aufgrund fehlender \u00dcberpr\u00fcfungen und unsachgem\u00e4\u00dfer Behandlung von BER-codierten Signaturen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen und weitere Angriffe zu starten."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-42459"
},
{
"cve": "CVE-2024-42460",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App . Diese Schwachstellen betreffen das Node.js Elliptic-Modul aufgrund fehlender \u00dcberpr\u00fcfungen und unsachgem\u00e4\u00dfer Behandlung von BER-codierten Signaturen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen und weitere Angriffe zu starten."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-42460"
},
{
"cve": "CVE-2024-42461",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM QRadar SIEM Log Source Management App . Diese Schwachstellen betreffen das Node.js Elliptic-Modul aufgrund fehlender \u00dcberpr\u00fcfungen und unsachgem\u00e4\u00dfer Behandlung von BER-codierten Signaturen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um vertrauliche Informationen offenzulegen und weitere Angriffe zu starten."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-42461"
},
{
"cve": "CVE-2024-47764",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in IBM QRadar SIEM Log Source Management App. Diese Schwachstelle betrifft das jshttp-Cookie aufgrund einer unsachgem\u00e4\u00dfen Eingabevalidierung von Cookie-Name, -Pfad und -Dom\u00e4ne. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsbeschr\u00e4nkungen zu umgehen und andere Felder des Cookies zu \u00e4ndern."
}
],
"product_status": {
"known_affected": [
"T040117"
]
},
"release_date": "2025-01-12T23:00:00.000+00:00",
"title": "CVE-2024-47764"
}
]
}
WID-SEC-W-2024-3307
Vulnerability from csaf_certbund
Published
2024-10-29 23:00
Modified
2024-11-20 23:00
Summary
IBM InfoSphere Information Server: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM InfoSphere Information Server ist eine Softwareplattform zur Integration heterogener Daten.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM InfoSphere Information Server ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
- Sonstiges
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM InfoSphere Information Server ist eine Softwareplattform zur Integration heterogener Daten.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM InfoSphere Information Server ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3307 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3307.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3307 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3307"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-10-29",
"url": "https://www.ibm.com/support/pages/node/7174288"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-10-29",
"url": "https://www.ibm.com/support/pages/node/7174289"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7174730 vom 2024-11-04",
"url": "https://www.ibm.com/support/pages/node/7174730"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7176660 vom 2024-11-20",
"url": "https://www.ibm.com/support/pages/node/7176660"
}
],
"source_lang": "en-US",
"title": "IBM InfoSphere Information Server: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2024-11-20T23:00:00.000+00:00",
"generator": {
"date": "2024-11-21T13:07:47.822+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3307",
"initial_release_date": "2024-10-29T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-10-29T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-11-04T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-11-20T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von IBM aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM DataPower Gateway",
"product": {
"name": "IBM DataPower Gateway",
"product_id": "393635",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:datapower_gateway:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c11.7.1.5",
"product": {
"name": "IBM InfoSphere Information Server \u003c11.7.1.5",
"product_id": "T038671"
}
},
{
"category": "product_version",
"name": "11.7.1.5",
"product": {
"name": "IBM InfoSphere Information Server 11.7.1.5",
"product_id": "T038671-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:infosphere_information_server:11.7.1.5"
}
}
}
],
"category": "product_name",
"name": "InfoSphere Information Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "Pulse App \u003c2.2.15",
"product": {
"name": "IBM QRadar SIEM Pulse App \u003c2.2.15",
"product_id": "T039350"
}
},
{
"category": "product_version",
"name": "Pulse App 2.2.15",
"product": {
"name": "IBM QRadar SIEM Pulse App 2.2.15",
"product_id": "T039350-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:pulse_app__2.2.15"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM InfoSphere Information Server. Diese Fehler bestehen in den Komponenten Undertow und expressjs body-parser aufgrund einer Race Condition und eines ungeeigneten Mechanismus zur Url-Kodierung. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T039350",
"T038671",
"393635"
]
},
"release_date": "2024-10-29T23:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-7885",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM InfoSphere Information Server. Diese Fehler bestehen in den Komponenten Undertow und expressjs body-parser aufgrund einer Race Condition und eines ungeeigneten Mechanismus zur Url-Kodierung. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T039350",
"T038671",
"393635"
]
},
"release_date": "2024-10-29T23:00:00.000+00:00",
"title": "CVE-2024-7885"
}
]
}
WID-SEC-W-2024-3534
Vulnerability from csaf_certbund
Published
2024-11-24 23:00
Modified
2024-11-25 23:00
Summary
Red Hat Trusted Profile Analyzer: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Trusted Profile Analyzer (RHTPA) ist ein Dienst für das Risikomanagement von Open-Source-Softwarepaketen und Abhängigkeiten.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Trusted Profile Analyzer ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Trusted Profile Analyzer (RHTPA) ist ein Dienst f\u00fcr das Risikomanagement von Open-Source-Softwarepaketen und Abh\u00e4ngigkeiten.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Trusted Profile Analyzer ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3534 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3534.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3534 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3534"
},
{
"category": "external",
"summary": "RedHat Security Advisory vom 2024-11-24",
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9885 vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
}
],
"source_lang": "en-US",
"title": "Red Hat Trusted Profile Analyzer: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2024-11-25T23:00:00.000+00:00",
"generator": {
"date": "2024-11-26T12:46:30.151+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3534",
"initial_release_date": "2024-11-24T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-24T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-11-25T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c1.2.0",
"product": {
"name": "Red Hat Trusted Profile Analyzer \u003c1.2.0",
"product_id": "T039423"
}
},
{
"category": "product_version",
"name": "1.2.0",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2.0",
"product_id": "T039423-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2.0"
}
}
}
],
"category": "product_name",
"name": "Trusted Profile Analyzer"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Trusted Profile Analyzer. Diese Fehler existieren in den Paketen body-parser und path-to-regexp wegen eines asymmetrischen Ressourcenverbrauchs und einer ineffizienten Komplexit\u00e4t regul\u00e4rer Ausdr\u00fccke. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T039423"
]
},
"release_date": "2024-11-24T23:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Trusted Profile Analyzer. Diese Fehler existieren in den Paketen body-parser und path-to-regexp wegen eines asymmetrischen Ressourcenverbrauchs und einer ineffizienten Komplexit\u00e4t regul\u00e4rer Ausdr\u00fccke. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T039423"
]
},
"release_date": "2024-11-24T23:00:00.000+00:00",
"title": "CVE-2024-45590"
}
]
}
wid-sec-w-2024-3307
Vulnerability from csaf_certbund
Published
2024-10-29 23:00
Modified
2024-11-20 23:00
Summary
IBM InfoSphere Information Server: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM InfoSphere Information Server ist eine Softwareplattform zur Integration heterogener Daten.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM InfoSphere Information Server ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
- Sonstiges
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM InfoSphere Information Server ist eine Softwareplattform zur Integration heterogener Daten.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM InfoSphere Information Server ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3307 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3307.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3307 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3307"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-10-29",
"url": "https://www.ibm.com/support/pages/node/7174288"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2024-10-29",
"url": "https://www.ibm.com/support/pages/node/7174289"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7174730 vom 2024-11-04",
"url": "https://www.ibm.com/support/pages/node/7174730"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7176660 vom 2024-11-20",
"url": "https://www.ibm.com/support/pages/node/7176660"
}
],
"source_lang": "en-US",
"title": "IBM InfoSphere Information Server: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2024-11-20T23:00:00.000+00:00",
"generator": {
"date": "2024-11-21T13:07:47.822+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3307",
"initial_release_date": "2024-10-29T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-10-29T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-11-04T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-11-20T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von IBM aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM DataPower Gateway",
"product": {
"name": "IBM DataPower Gateway",
"product_id": "393635",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:datapower_gateway:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c11.7.1.5",
"product": {
"name": "IBM InfoSphere Information Server \u003c11.7.1.5",
"product_id": "T038671"
}
},
{
"category": "product_version",
"name": "11.7.1.5",
"product": {
"name": "IBM InfoSphere Information Server 11.7.1.5",
"product_id": "T038671-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:infosphere_information_server:11.7.1.5"
}
}
}
],
"category": "product_name",
"name": "InfoSphere Information Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "Pulse App \u003c2.2.15",
"product": {
"name": "IBM QRadar SIEM Pulse App \u003c2.2.15",
"product_id": "T039350"
}
},
{
"category": "product_version",
"name": "Pulse App 2.2.15",
"product": {
"name": "IBM QRadar SIEM Pulse App 2.2.15",
"product_id": "T039350-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:pulse_app__2.2.15"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM InfoSphere Information Server. Diese Fehler bestehen in den Komponenten Undertow und expressjs body-parser aufgrund einer Race Condition und eines ungeeigneten Mechanismus zur Url-Kodierung. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T039350",
"T038671",
"393635"
]
},
"release_date": "2024-10-29T23:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-7885",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM InfoSphere Information Server. Diese Fehler bestehen in den Komponenten Undertow und expressjs body-parser aufgrund einer Race Condition und eines ungeeigneten Mechanismus zur Url-Kodierung. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"T039350",
"T038671",
"393635"
]
},
"release_date": "2024-10-29T23:00:00.000+00:00",
"title": "CVE-2024-7885"
}
]
}
WID-SEC-W-2024-3344
Vulnerability from csaf_certbund
Published
2024-11-05 23:00
Modified
2024-12-18 23:00
Summary
HCL BigFix WebUI: Mehrere Open Source Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
BigFix ist eine Lösung zum Erkennen und Verwalten von physischen und virtuellen Endpunkten.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in HCL BigFix WebU ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.
Betroffene Betriebssysteme
- Linux
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "BigFix ist eine L\u00f6sung zum Erkennen und Verwalten von physischen und virtuellen Endpunkten.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in HCL BigFix WebU ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3344 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3344.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3344 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3344"
},
{
"category": "external",
"summary": "HCL BigFix Security Advisory vom 2024-11-05",
"url": "https://support.hcl-software.com/community?id=community_blog\u0026sys_id=e8e9f77b936dd6100dddf87d1dba103d"
},
{
"category": "external",
"summary": "HCL Security Bulletin vom 2024-12-18",
"url": "https://support.hcl-software.com/community?id=community_blog\u0026sys_id=1af3c435fb2216d0db10f2797befdc15"
}
],
"source_lang": "en-US",
"title": "HCL BigFix WebUI: Mehrere Open Source Schwachstellen",
"tracking": {
"current_release_date": "2024-12-18T23:00:00.000+00:00",
"generator": {
"date": "2024-12-19T09:12:54.292+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2024-3344",
"initial_release_date": "2024-11-05T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-05T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-12-18T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "HCL BigFix",
"product": {
"name": "HCL BigFix",
"product_id": "T036098",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:bigfix:webui"
}
}
},
{
"category": "product_version",
"name": "Server Automation",
"product": {
"name": "HCL BigFix Server Automation",
"product_id": "T039915",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:bigfix:server_automation"
}
}
}
],
"category": "product_name",
"name": "BigFix"
}
],
"category": "vendor",
"name": "HCL"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-26159",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2023-26159"
},
{
"cve": "CVE-2023-45857",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2023-45857"
},
{
"cve": "CVE-2024-21501",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-21501"
},
{
"cve": "CVE-2024-33883",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-33883"
},
{
"cve": "CVE-2024-35255",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-35255"
},
{
"cve": "CVE-2024-38996",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-38996"
},
{
"cve": "CVE-2024-43796",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-43796"
},
{
"cve": "CVE-2024-43799",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-43799"
},
{
"cve": "CVE-2024-43800",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-43800"
},
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-8372",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-8372"
},
{
"cve": "CVE-2024-8373",
"notes": [
{
"category": "description",
"text": "In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und die Integrit\u00e4t zu gef\u00e4hrden."
}
],
"product_status": {
"known_affected": [
"T039915",
"T036098"
]
},
"release_date": "2024-11-05T23:00:00.000+00:00",
"title": "CVE-2024-8373"
}
]
}
wid-sec-w-2024-3534
Vulnerability from csaf_certbund
Published
2024-11-24 23:00
Modified
2024-11-25 23:00
Summary
Red Hat Trusted Profile Analyzer: Mehrere Schwachstellen ermöglichen Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Trusted Profile Analyzer (RHTPA) ist ein Dienst für das Risikomanagement von Open-Source-Softwarepaketen und Abhängigkeiten.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Trusted Profile Analyzer ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Trusted Profile Analyzer (RHTPA) ist ein Dienst f\u00fcr das Risikomanagement von Open-Source-Softwarepaketen und Abh\u00e4ngigkeiten.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Trusted Profile Analyzer ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-3534 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3534.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-3534 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3534"
},
{
"category": "external",
"summary": "RedHat Security Advisory vom 2024-11-24",
"url": "https://access.redhat.com/errata/RHSA-2024:9884"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9885 vom 2024-11-26",
"url": "https://access.redhat.com/errata/RHSA-2024:9885"
}
],
"source_lang": "en-US",
"title": "Red Hat Trusted Profile Analyzer: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2024-11-25T23:00:00.000+00:00",
"generator": {
"date": "2024-11-26T12:46:30.151+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.8"
}
},
"id": "WID-SEC-W-2024-3534",
"initial_release_date": "2024-11-24T23:00:00.000+00:00",
"revision_history": [
{
"date": "2024-11-24T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-11-25T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c1.2.0",
"product": {
"name": "Red Hat Trusted Profile Analyzer \u003c1.2.0",
"product_id": "T039423"
}
},
{
"category": "product_version",
"name": "1.2.0",
"product": {
"name": "Red Hat Trusted Profile Analyzer 1.2.0",
"product_id": "T039423-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2.0"
}
}
}
],
"category": "product_name",
"name": "Trusted Profile Analyzer"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Trusted Profile Analyzer. Diese Fehler existieren in den Paketen body-parser und path-to-regexp wegen eines asymmetrischen Ressourcenverbrauchs und einer ineffizienten Komplexit\u00e4t regul\u00e4rer Ausdr\u00fccke. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T039423"
]
},
"release_date": "2024-11-24T23:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in Red Hat Trusted Profile Analyzer. Diese Fehler existieren in den Paketen body-parser und path-to-regexp wegen eines asymmetrischen Ressourcenverbrauchs und einer ineffizienten Komplexit\u00e4t regul\u00e4rer Ausdr\u00fccke. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen."
}
],
"product_status": {
"known_affected": [
"67646",
"T039423"
]
},
"release_date": "2024-11-24T23:00:00.000+00:00",
"title": "CVE-2024-45590"
}
]
}
wid-sec-w-2025-0001
Vulnerability from csaf_certbund
Published
2025-01-01 23:00
Modified
2025-01-06 23:00
Summary
IBM DB2: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM DB2 ist ein relationales Datenbanksystem (RDBS) von IBM.
Angriff
Ein entfernter oder lokaler Angreifer kann mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data ausnutzen, um seine Privilegien zu erhöhen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, Sicherheitsmaßnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen.
Betroffene Betriebssysteme
- Sonstiges
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM DB2 ist ein relationales Datenbanksystem (RDBS) von IBM.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter oder lokaler Angreifer kann mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0001 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0001.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0001 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0001"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2025-01-01",
"url": "https://www.ibm.com/support/pages/node/7180105"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7180361 vom 2025-01-07",
"url": "https://www.ibm.com/support/pages/node/7180361"
}
],
"source_lang": "en-US",
"title": "IBM DB2: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-06T23:00:00.000+00:00",
"generator": {
"date": "2025-01-07T11:42:20.646+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2025-0001",
"initial_release_date": "2025-01-01T23:00:00.000+00:00",
"revision_history": [
{
"date": "2025-01-01T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-01-06T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von IBM aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c5.1.0",
"product": {
"name": "IBM DB2 \u003c5.1.0",
"product_id": "T039987"
}
},
{
"category": "product_version",
"name": "5.1.0",
"product": {
"name": "IBM DB2 5.1.0",
"product_id": "T039987-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:db2:5.1.0"
}
}
},
{
"category": "product_version_range",
"name": "Warehouse \u003c5.1.0",
"product": {
"name": "IBM DB2 Warehouse \u003c5.1.0",
"product_id": "T039988"
}
},
{
"category": "product_version",
"name": "Warehouse 5.1.0",
"product": {
"name": "IBM DB2 Warehouse 5.1.0",
"product_id": "T039988-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:db2:warehouse__5.1.0"
}
}
}
],
"category": "product_name",
"name": "DB2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.1.6.4",
"product": {
"name": "IBM Spectrum Protect Plus \u003c10.1.6.4",
"product_id": "T040030"
}
},
{
"category": "product_version",
"name": "10.1.6.4",
"product": {
"name": "IBM Spectrum Protect Plus 10.1.6.4",
"product_id": "T040030-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:spectrum_protect_plus:10.1.6.4"
}
}
}
],
"category": "product_name",
"name": "Spectrum Protect Plus"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-32740",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2021-32740"
},
{
"cve": "CVE-2021-41186",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2021-41186"
},
{
"cve": "CVE-2022-0759",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2022-0759"
},
{
"cve": "CVE-2022-24795",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2022-24795"
},
{
"cve": "CVE-2022-31163",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2022-31163"
},
{
"cve": "CVE-2023-39325",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2023-39325"
},
{
"cve": "CVE-2023-41993",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2023-41993"
},
{
"cve": "CVE-2023-45283",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2023-45283"
},
{
"cve": "CVE-2023-45288",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2023-6597",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2023-6597"
},
{
"cve": "CVE-2024-0406",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-0406"
},
{
"cve": "CVE-2024-20918",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-20918"
},
{
"cve": "CVE-2024-20952",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-20952"
},
{
"cve": "CVE-2024-2398",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-2398"
},
{
"cve": "CVE-2024-24786",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-27281",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-27281"
},
{
"cve": "CVE-2024-2961",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-29857",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-29857"
},
{
"cve": "CVE-2024-33599",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-33599"
},
{
"cve": "CVE-2024-33883",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-33883"
},
{
"cve": "CVE-2024-37370",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-37370"
},
{
"cve": "CVE-2024-37371",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-37371"
},
{
"cve": "CVE-2024-37890",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-37890"
},
{
"cve": "CVE-2024-39338",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-39338"
},
{
"cve": "CVE-2024-4068",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-4068"
},
{
"cve": "CVE-2024-41110",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-41110"
},
{
"cve": "CVE-2024-41123",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-41123"
},
{
"cve": "CVE-2024-41946",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-41946"
},
{
"cve": "CVE-2024-45296",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-45296"
},
{
"cve": "CVE-2024-45491",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-45491"
},
{
"cve": "CVE-2024-45590",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-45590"
},
{
"cve": "CVE-2024-47220",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-47220"
},
{
"cve": "CVE-2024-47554",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-47554"
},
{
"cve": "CVE-2024-6119",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-6119"
},
{
"cve": "CVE-2024-6345",
"notes": [
{
"category": "description",
"text": "Es bestehen mehrere Schwachstellen in IBM DB2 on Cloud Pak for Data. Diese existieren wegen unsachgem\u00e4\u00dfer \u00dcberpr\u00fcfungen, sowie Fehlern in der Speicherbehandlung, Eingabevalidierung und Berechtigungsverwaltung bez\u00fcglich der genutzten Komponenten, wie z.B. Java SE, cURL, Bouncy Castle, Kerberos und expat. Ein entfernter oder lokaler Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, Sicherheitsma\u00dfnahmen zu umgehen oder einen Denial-of-Service-Zustand zu erzeugen. Zur erfolgreichen Ausnutzung einiger dieser Schwachstellen ist eine Benutzerinteraktion erforderlich."
}
],
"product_status": {
"known_affected": [
"T040030",
"T039988",
"T039987"
]
},
"release_date": "2025-01-01T23:00:00.000+00:00",
"title": "CVE-2024-6345"
}
]
}
CERTFR-2024-AVI-0958
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cloud Pak System | Cloud Pak System versions 2.3.4.x antérieures à 2.3.4.1 | ||
| IBM | VIOS | VIOS version 4.1 avec un fichier tcl.base versions antérieures à 8.6.10.1 | ||
| IBM | Security QRadar EDR | Security QRadar EDR versions 3.12.x antérieures à 3.12.13 | ||
| IBM | VIOS | VIOS version 4.1 avec un fichier python3.9.base versions antérieures à 3.9.20.0 | ||
| IBM | AIX | AIX version 7.2 avec un fichier tcl.base versions antérieures à 8.6.10.1 | ||
| IBM | AIX | AIX version 7.3 avec un fichier python3.9.base versions antérieures à 3.9.20.0 | ||
| IBM | AIX | AIX version 7.3 avec un fichier tcl.base versions antérieures à 8.6.10.1 | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.x antérieures à 7.5.0 UP10 IF01 | ||
| IBM | Cloud Pak System | Cloud Pak System versions 2.3.4.0 avec Db2 versions antérieures à 11.5.9 Special Build | ||
| IBM | Sterling Control Center | Sterling Control Center versions 6.3.1.x antérieures à 6.3.1.0 iFix03 | ||
| IBM | VIOS | VIOS version 3.1 avec un fichier tcl.base versions antérieures à 8.6.10.1 | ||
| IBM | Cloud Pak | Cloud Pak for Security versions antérieures à 1.10.27.0 | ||
| IBM | Cloud Transformation Advisor | Cloud Transformation Advisor versions antérieures à 3.10.2 | ||
| IBM | QRadar Suite Software | QRadar Suite Software versions antérieures à 1.10.27.0 | ||
| IBM | Sterling Control Center | Sterling Control Center versions 6.2.1.x antérieures à 6.2.1.0 iFix14 | ||
| IBM | QRadar Deployment Intelligence App | QRadar Deployment Intelligence App versions antérieures à 3.0.15 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cloud Pak System versions 2.3.4.x ant\u00e9rieures \u00e0 2.3.4.1",
"product": {
"name": "Cloud Pak System",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 avec un fichier tcl.base versions ant\u00e9rieures \u00e0 8.6.10.1",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Security QRadar EDR versions 3.12.x ant\u00e9rieures \u00e0 3.12.13",
"product": {
"name": "Security QRadar EDR",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 avec un fichier python3.9.base versions ant\u00e9rieures \u00e0 3.9.20.0",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.2 avec un fichier tcl.base versions ant\u00e9rieures \u00e0 8.6.10.1",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.3 avec un fichier python3.9.base versions ant\u00e9rieures \u00e0 3.9.20.0",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.3 avec un fichier tcl.base versions ant\u00e9rieures \u00e0 8.6.10.1",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.x ant\u00e9rieures \u00e0 7.5.0 UP10 IF01",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Pak System versions 2.3.4.0 avec Db2 versions ant\u00e9rieures \u00e0 11.5.9 Special Build",
"product": {
"name": "Cloud Pak System",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Control Center versions 6.3.1.x ant\u00e9rieures \u00e0 6.3.1.0 iFix03",
"product": {
"name": "Sterling Control Center",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 3.1 avec un fichier tcl.base versions ant\u00e9rieures \u00e0 8.6.10.1",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Pak for Security versions ant\u00e9rieures \u00e0 1.10.27.0",
"product": {
"name": "Cloud Pak",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Transformation Advisor versions ant\u00e9rieures \u00e0 3.10.2 ",
"product": {
"name": "Cloud Transformation Advisor",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Suite Software versions ant\u00e9rieures \u00e0 1.10.27.0",
"product": {
"name": "QRadar Suite Software",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Control Center versions 6.2.1.x ant\u00e9rieures \u00e0 6.2.1.0 iFix14",
"product": {
"name": "Sterling Control Center",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Deployment Intelligence App versions ant\u00e9rieures \u00e0 3.0.15",
"product": {
"name": "QRadar Deployment Intelligence App",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2020-25659",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25659"
},
{
"name": "CVE-2020-36242",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36242"
},
{
"name": "CVE-2022-23181",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23181"
},
{
"name": "CVE-2021-42340",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42340"
},
{
"name": "CVE-2022-29885",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29885"
},
{
"name": "CVE-2022-34305",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34305"
},
{
"name": "CVE-2017-7500",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7500"
},
{
"name": "CVE-2022-25762",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25762"
},
{
"name": "CVE-2022-42252",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42252"
},
{
"name": "CVE-2022-40897",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40897"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2023-23931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23931"
},
{
"name": "CVE-2023-28708",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28708"
},
{
"name": "CVE-2022-24999",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24999"
},
{
"name": "CVE-2023-28322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28322"
},
{
"name": "CVE-2023-3446",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3446"
},
{
"name": "CVE-2023-2953",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2953"
},
{
"name": "CVE-2023-37920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37920"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2023-38325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38325"
},
{
"name": "CVE-2023-38546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38546"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2021-43618",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43618"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2023-28487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28487"
},
{
"name": "CVE-2022-23471",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23471"
},
{
"name": "CVE-2023-28486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28486"
},
{
"name": "CVE-2023-25153",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25153"
},
{
"name": "CVE-2023-7104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7104"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2023-46218",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46218"
},
{
"name": "CVE-2024-0727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
},
{
"name": "CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"name": "CVE-2023-25173",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25173"
},
{
"name": "CVE-2022-31030",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-31030"
},
{
"name": "CVE-2022-23648",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23648"
},
{
"name": "CVE-2023-28746",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28746"
},
{
"name": "CVE-2023-52451",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52451"
},
{
"name": "CVE-2023-52584",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52584"
},
{
"name": "CVE-2023-52469",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52469"
},
{
"name": "CVE-2023-52600",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52600"
},
{
"name": "CVE-2023-52463",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52463"
},
{
"name": "CVE-2023-52599",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52599"
},
{
"name": "CVE-2023-42465",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42465"
},
{
"name": "CVE-2023-52530",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52530"
},
{
"name": "CVE-2024-26586",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26586"
},
{
"name": "CVE-2023-27043",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27043"
},
{
"name": "CVE-2023-36632",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36632"
},
{
"name": "CVE-2023-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49083"
},
{
"name": "CVE-2023-2253",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2253"
},
{
"name": "CVE-2024-2201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2201"
},
{
"name": "CVE-2023-52609",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52609"
},
{
"name": "CVE-2017-7501",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7501"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2021-35939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35939"
},
{
"name": "CVE-2024-26308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26308"
},
{
"name": "CVE-2024-0553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0553"
},
{
"name": "CVE-2021-35938",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35938"
},
{
"name": "CVE-2023-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50782"
},
{
"name": "CVE-2021-35937",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35937"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2023-52591",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52591"
},
{
"name": "CVE-2024-26667",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26667"
},
{
"name": "CVE-2023-52608",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52608"
},
{
"name": "CVE-2023-52486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52486"
},
{
"name": "CVE-2024-26614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26614"
},
{
"name": "CVE-2024-25739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25739"
},
{
"name": "CVE-2023-52623",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52623"
},
{
"name": "CVE-2023-52619",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52619"
},
{
"name": "CVE-2024-29133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29133"
},
{
"name": "CVE-2024-29131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29131"
},
{
"name": "CVE-2024-26707",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26707"
},
{
"name": "CVE-2024-26697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26697"
},
{
"name": "CVE-2024-26704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26704"
},
{
"name": "CVE-2023-52622",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52622"
},
{
"name": "CVE-2024-26727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26727"
},
{
"name": "CVE-2024-26718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26718"
},
{
"name": "CVE-2024-26702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26702"
},
{
"name": "CVE-2024-26710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26710"
},
{
"name": "CVE-2024-26810",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26810"
},
{
"name": "CVE-2024-26663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26663"
},
{
"name": "CVE-2024-26773",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26773"
},
{
"name": "CVE-2024-26660",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26660"
},
{
"name": "CVE-2024-26726",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26726"
},
{
"name": "CVE-2024-26640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26640"
},
{
"name": "CVE-2024-26802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26802"
},
{
"name": "CVE-2024-26733",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26733"
},
{
"name": "CVE-2024-26700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26700"
},
{
"name": "CVE-2024-26772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26772"
},
{
"name": "CVE-2024-26696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26696"
},
{
"name": "CVE-2024-26698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26698"
},
{
"name": "CVE-2024-26714",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26714"
},
{
"name": "CVE-2024-26686",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26686"
},
{
"name": "CVE-2017-11468",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11468"
},
{
"name": "CVE-2023-45284",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45284"
},
{
"name": "CVE-2023-52590",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52590"
},
{
"name": "CVE-2021-46939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46939"
},
{
"name": "CVE-2024-26870",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26870"
},
{
"name": "CVE-2024-27025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27025"
},
{
"name": "CVE-2024-26961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26961"
},
{
"name": "CVE-2024-26840",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26840"
},
{
"name": "CVE-2024-26958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26958"
},
{
"name": "CVE-2024-26843",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26843"
},
{
"name": "CVE-2024-26925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26925"
},
{
"name": "CVE-2024-27388",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27388"
},
{
"name": "CVE-2024-27020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27020"
},
{
"name": "CVE-2024-26960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26960"
},
{
"name": "CVE-2024-26820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26820"
},
{
"name": "CVE-2024-26878",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26878"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2024-27065",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27065"
},
{
"name": "CVE-2024-26825",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26825"
},
{
"name": "CVE-2024-27019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27019"
},
{
"name": "CVE-2024-26668",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26668"
},
{
"name": "CVE-2024-26669",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26669"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2024-21823",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21823"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"name": "CVE-2023-52653",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52653"
},
{
"name": "CVE-2024-26853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26853"
},
{
"name": "CVE-2022-48632",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48632"
},
{
"name": "CVE-2024-29025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29025"
},
{
"name": "CVE-2024-35947",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35947"
},
{
"name": "CVE-2024-36017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36017"
},
{
"name": "CVE-2024-36886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36886"
},
{
"name": "CVE-2024-36889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36889"
},
{
"name": "CVE-2024-36904",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36904"
},
{
"name": "CVE-2024-36905",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36905"
},
{
"name": "CVE-2024-36929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36929"
},
{
"name": "CVE-2024-36933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36933"
},
{
"name": "CVE-2024-36940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36940"
},
{
"name": "CVE-2024-36941",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36941"
},
{
"name": "CVE-2024-36950",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36950"
},
{
"name": "CVE-2024-36954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36954"
},
{
"name": "CVE-2021-47231",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47231"
},
{
"name": "CVE-2021-47284",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47284"
},
{
"name": "CVE-2021-47373",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47373"
},
{
"name": "CVE-2021-47408",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47408"
},
{
"name": "CVE-2021-47449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47449"
},
{
"name": "CVE-2021-47461",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47461"
},
{
"name": "CVE-2021-47468",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47468"
},
{
"name": "CVE-2021-47491",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47491"
},
{
"name": "CVE-2021-47548",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47548"
},
{
"name": "CVE-2023-52662",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52662"
},
{
"name": "CVE-2023-52679",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52679"
},
{
"name": "CVE-2023-52707",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52707"
},
{
"name": "CVE-2023-52730",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52730"
},
{
"name": "CVE-2023-52756",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52756"
},
{
"name": "CVE-2023-52764",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52764"
},
{
"name": "CVE-2023-52777",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52777"
},
{
"name": "CVE-2023-52791",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52791"
},
{
"name": "CVE-2023-52796",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52796"
},
{
"name": "CVE-2023-52803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52803"
},
{
"name": "CVE-2023-52811",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52811"
},
{
"name": "CVE-2023-52817",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52817"
},
{
"name": "CVE-2023-52832",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52832"
},
{
"name": "CVE-2023-52834",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52834"
},
{
"name": "CVE-2023-52847",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52847"
},
{
"name": "CVE-2023-52864",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52864"
},
{
"name": "CVE-2024-26921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26921"
},
{
"name": "CVE-2024-26940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26940"
},
{
"name": "CVE-2024-27395",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27395"
},
{
"name": "CVE-2024-35801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35801"
},
{
"name": "CVE-2024-35823",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35823"
},
{
"name": "CVE-2024-35847",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35847"
},
{
"name": "CVE-2024-35912",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35912"
},
{
"name": "CVE-2024-35924",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35924"
},
{
"name": "CVE-2024-35930",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35930"
},
{
"name": "CVE-2024-35938",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35938"
},
{
"name": "CVE-2024-35940",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35940"
},
{
"name": "CVE-2024-35952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35952"
},
{
"name": "CVE-2024-36006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36006"
},
{
"name": "CVE-2024-36016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36016"
},
{
"name": "CVE-2024-36896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36896"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2024-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5535"
},
{
"name": "CVE-2023-52658",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52658"
},
{
"name": "CVE-2024-26740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26740"
},
{
"name": "CVE-2024-26844",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26844"
},
{
"name": "CVE-2024-26962",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26962"
},
{
"name": "CVE-2024-27434",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27434"
},
{
"name": "CVE-2024-35790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35790"
},
{
"name": "CVE-2024-35810",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35810"
},
{
"name": "CVE-2024-35814",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35814"
},
{
"name": "CVE-2024-35824",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35824"
},
{
"name": "CVE-2024-35937",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35937"
},
{
"name": "CVE-2024-35946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35946"
},
{
"name": "CVE-2024-36020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36020"
},
{
"name": "CVE-2024-36025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36025"
},
{
"name": "CVE-2024-36921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36921"
},
{
"name": "CVE-2024-31076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31076"
},
{
"name": "CVE-2024-33621",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33621"
},
{
"name": "CVE-2024-35807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35807"
},
{
"name": "CVE-2024-35893",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35893"
},
{
"name": "CVE-2024-35896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35896"
},
{
"name": "CVE-2024-35897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35897"
},
{
"name": "CVE-2024-35899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35899"
},
{
"name": "CVE-2024-35900",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35900"
},
{
"name": "CVE-2024-35910",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35910"
},
{
"name": "CVE-2024-35925",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35925"
},
{
"name": "CVE-2024-36005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36005"
},
{
"name": "CVE-2024-36286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36286"
},
{
"name": "CVE-2024-36960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36960"
},
{
"name": "CVE-2024-36971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36971"
},
{
"name": "CVE-2024-38596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38596"
},
{
"name": "CVE-2024-38598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38598"
},
{
"name": "CVE-2024-38627",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38627"
},
{
"name": "CVE-2023-5752",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5752"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-4032",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4032"
},
{
"name": "CVE-2023-52648",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52648"
},
{
"name": "CVE-2023-6004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6004"
},
{
"name": "CVE-2023-6918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6918"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2024-25062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25062"
},
{
"name": "CVE-2024-26458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26458"
},
{
"name": "CVE-2024-26461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26461"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2024-34069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34069"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2022-48743",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48743"
},
{
"name": "CVE-2022-48747",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48747"
},
{
"name": "CVE-2023-52762",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52762"
},
{
"name": "CVE-2023-52784",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52784"
},
{
"name": "CVE-2023-52845",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52845"
},
{
"name": "CVE-2024-26842",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26842"
},
{
"name": "CVE-2024-36917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36917"
},
{
"name": "CVE-2024-36945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36945"
},
{
"name": "CVE-2024-36978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36978"
},
{
"name": "CVE-2024-38555",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38555"
},
{
"name": "CVE-2024-38573",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38573"
},
{
"name": "CVE-2024-22365",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22365"
},
{
"name": "CVE-2024-21131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21131"
},
{
"name": "CVE-2024-21138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21138"
},
{
"name": "CVE-2024-21140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21140"
},
{
"name": "CVE-2024-21144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21144"
},
{
"name": "CVE-2024-21145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21145"
},
{
"name": "CVE-2024-21147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21147"
},
{
"name": "CVE-2024-26662",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26662"
},
{
"name": "CVE-2024-26703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26703"
},
{
"name": "CVE-2024-26818",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26818"
},
{
"name": "CVE-2024-26824",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26824"
},
{
"name": "CVE-2024-26831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26831"
},
{
"name": "CVE-2024-27010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27010"
},
{
"name": "CVE-2024-27011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27011"
},
{
"name": "CVE-2024-36270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36270"
},
{
"name": "CVE-2024-36489",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36489"
},
{
"name": "CVE-2024-38615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38615"
},
{
"name": "CVE-2024-39276",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39276"
},
{
"name": "CVE-2024-39476",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39476"
},
{
"name": "CVE-2024-39487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39487"
},
{
"name": "CVE-2024-39495",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39495"
},
{
"name": "CVE-2024-39502",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39502"
},
{
"name": "CVE-2024-40902",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40902"
},
{
"name": "CVE-2024-40927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40927"
},
{
"name": "CVE-2024-40974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40974"
},
{
"name": "CVE-2024-36010",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36010"
},
{
"name": "CVE-2024-38575",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38575"
},
{
"name": "CVE-2024-6923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6923"
},
{
"name": "CVE-2024-36000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36000"
},
{
"name": "CVE-2024-36927",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36927"
},
{
"name": "CVE-2024-36979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36979"
},
{
"name": "CVE-2024-38538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38538"
},
{
"name": "CVE-2021-47018",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47018"
},
{
"name": "CVE-2021-47257",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47257"
},
{
"name": "CVE-2021-47304",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47304"
},
{
"name": "CVE-2021-47579",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47579"
},
{
"name": "CVE-2021-47624",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47624"
},
{
"name": "CVE-2022-48757",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48757"
},
{
"name": "CVE-2023-52471",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52471"
},
{
"name": "CVE-2023-52775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52775"
},
{
"name": "CVE-2024-26837",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26837"
},
{
"name": "CVE-2024-39472",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39472"
},
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2024-38808",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38808"
},
{
"name": "CVE-2024-38809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38809"
},
{
"name": "CVE-2024-27267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27267"
},
{
"name": "CVE-2024-38428",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38428"
},
{
"name": "CVE-2024-42232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42232"
},
{
"name": "CVE-2024-42236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42236"
},
{
"name": "CVE-2024-42244",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42244"
},
{
"name": "CVE-2024-42247",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42247"
},
{
"name": "CVE-2023-4692",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4692"
},
{
"name": "CVE-2023-4693",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4693"
},
{
"name": "CVE-2023-7008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7008"
},
{
"name": "CVE-2024-1048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1048"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39689"
},
{
"name": "CVE-2024-45491",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45491"
},
{
"name": "CVE-2024-45492",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45492"
},
{
"name": "CVE-2024-38816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38816"
},
{
"name": "CVE-2024-41042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41042"
},
{
"name": "CVE-2024-42238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42238"
},
{
"name": "CVE-2024-42259",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42259"
},
{
"name": "CVE-2024-43824",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43824"
},
{
"name": "CVE-2024-43833",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43833"
},
{
"name": "CVE-2024-43858",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43858"
},
{
"name": "CVE-2021-42694",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42694"
},
{
"name": "CVE-2023-50314",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50314"
},
{
"name": "CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"name": "CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"name": "CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"name": "CVE-2024-42252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42252"
},
{
"name": "CVE-2024-43832",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43832"
},
{
"name": "CVE-2024-37370",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37370"
},
{
"name": "CVE-2024-37371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37371"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2024-42251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42251"
},
{
"name": "CVE-2021-43980",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43980"
},
{
"name": "CVE-2023-20584",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20584"
},
{
"name": "CVE-2023-31356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31356"
},
{
"name": "CVE-2023-36328",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36328"
},
{
"name": "CVE-2023-48161",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48161"
},
{
"name": "CVE-2023-5115",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5115"
},
{
"name": "CVE-2023-52596",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52596"
},
{
"name": "CVE-2023-5764",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5764"
},
{
"name": "CVE-2024-21529",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21529"
},
{
"name": "CVE-2024-21534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21534"
},
{
"name": "CVE-2024-25620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25620"
},
{
"name": "CVE-2024-26147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26147"
},
{
"name": "CVE-2024-26713",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26713"
},
{
"name": "CVE-2024-26721",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26721"
},
{
"name": "CVE-2024-26823",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26823"
},
{
"name": "CVE-2024-30203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30203"
},
{
"name": "CVE-2024-30205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30205"
},
{
"name": "CVE-2024-31882",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31882"
},
{
"name": "CVE-2024-34447",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34447"
},
{
"name": "CVE-2024-35136",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35136"
},
{
"name": "CVE-2024-35152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35152"
},
{
"name": "CVE-2024-37529",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37529"
},
{
"name": "CVE-2024-38286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38286"
},
{
"name": "CVE-2024-39331",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39331"
},
{
"name": "CVE-2024-42254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42254"
},
{
"name": "CVE-2024-42255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42255"
},
{
"name": "CVE-2024-42256",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42256"
},
{
"name": "CVE-2024-42258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42258"
},
{
"name": "CVE-2024-42460",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42460"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2024-43857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43857"
},
{
"name": "CVE-2024-45490",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45490"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-45801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45801"
},
{
"name": "CVE-2024-46982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46982"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2024-47874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47874"
},
{
"name": "CVE-2024-47875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47875"
},
{
"name": "CVE-2024-7592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7592"
},
{
"name": "CVE-2024-8088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8088"
}
],
"initial_release_date": "2024-11-08T00:00:00",
"last_revision_date": "2024-11-08T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-0958",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-11-08T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7174802",
"url": "https://www.ibm.com/support/pages/node/7174802"
},
{
"published_at": "2024-11-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7174634",
"url": "https://www.ibm.com/support/pages/node/7174634"
},
{
"published_at": "2024-11-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7174639",
"url": "https://www.ibm.com/support/pages/node/7174639"
},
{
"published_at": "2024-11-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7175196",
"url": "https://www.ibm.com/support/pages/node/7175196"
},
{
"published_at": "2024-11-07",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7175086",
"url": "https://www.ibm.com/support/pages/node/7175086"
},
{
"published_at": "2024-11-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7175192",
"url": "https://www.ibm.com/support/pages/node/7175192"
},
{
"published_at": "2024-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7174799",
"url": "https://www.ibm.com/support/pages/node/7174799"
},
{
"published_at": "2024-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7174797",
"url": "https://www.ibm.com/support/pages/node/7174797"
},
{
"published_at": "2024-11-06",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7174945",
"url": "https://www.ibm.com/support/pages/node/7174945"
},
{
"published_at": "2024-11-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7174912",
"url": "https://www.ibm.com/support/pages/node/7174912"
},
{
"published_at": "2024-11-07",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7175166",
"url": "https://www.ibm.com/support/pages/node/7175166"
}
]
}
CERTFR-2025-AVI-0045
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | QRadar Log Source Management App | QRadar Log Source Management App versions antérieures à 7.0.11 | ||
| IBM | Db2 Query Management Facility | DB2 Query Management Facility versions 13.1.1 et 13.1.2 sans la dernière version du JRE |
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "QRadar Log Source Management App versions ant\u00e9rieures \u00e0 7.0.11",
"product": {
"name": "QRadar Log Source Management App",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "DB2 Query Management Facility versions 13.1.1 et 13.1.2 sans la derni\u00e8re version du JRE",
"product": {
"name": "Db2 Query Management Facility",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-42459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42459"
},
{
"name": "CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"name": "CVE-2024-55565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55565"
},
{
"name": "CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2024-20926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-42460",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42460"
},
{
"name": "CVE-2024-22361",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22361"
},
{
"name": "CVE-2024-20921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2024-33883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33883"
},
{
"name": "CVE-2023-22081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22081"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2023-22067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22067"
},
{
"name": "CVE-2024-48949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48949"
},
{
"name": "CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2024-48948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48948"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2024-45801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45801"
},
{
"name": "CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"name": "CVE-2024-47875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47875"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2023-5676",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5676"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2024-47068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47068"
},
{
"name": "CVE-2024-20932",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20932"
},
{
"name": "CVE-2024-20918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
},
{
"name": "CVE-2024-42461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42461"
},
{
"name": "CVE-2024-20945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
},
{
"name": "CVE-2024-20952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
}
],
"initial_release_date": "2025-01-17T00:00:00",
"last_revision_date": "2025-01-17T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0045",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-17T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-01-13",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180895",
"url": "https://www.ibm.com/support/pages/node/7180895"
},
{
"published_at": "2025-01-13",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180894",
"url": "https://www.ibm.com/support/pages/node/7180894"
},
{
"published_at": "2025-01-10",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180725",
"url": "https://www.ibm.com/support/pages/node/7180725"
}
]
}
CERTFR-2025-AVI-0661
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Splunk. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "AppDynamics Cluster Agent versions ant\u00e9rieures \u00e0 25.6.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": " AppDynamics On-Premise Enterprise Console versions ant\u00e9rieures \u00e0 25.4.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Splunk",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-30681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30681"
},
{
"name": "CVE-2019-17267",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17267"
},
{
"name": "CVE-2022-48564",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48564"
},
{
"name": "CVE-2021-21409",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21409"
},
{
"name": "CVE-2025-30689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30689"
},
{
"name": "CVE-2025-30715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30715"
},
{
"name": "CVE-2025-30682",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30682"
},
{
"name": "CVE-2025-21500",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21500"
},
{
"name": "CVE-2023-1370",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1370"
},
{
"name": "CVE-2025-21503",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21503"
},
{
"name": "CVE-2025-21543",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21543"
},
{
"name": "CVE-2024-23944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23944"
},
{
"name": "CVE-2024-47601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47601"
},
{
"name": "CVE-2025-21519",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21519"
},
{
"name": "CVE-2024-47544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47544"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2024-47538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47538"
},
{
"name": "CVE-2024-47545",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47545"
},
{
"name": "CVE-2023-45853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45853"
},
{
"name": "CVE-2022-38398",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38398"
},
{
"name": "CVE-2025-30703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30703"
},
{
"name": "CVE-2025-21505",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21505"
},
{
"name": "CVE-2022-45061",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45061"
},
{
"name": "CVE-2024-4761",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4761"
},
{
"name": "CVE-2025-21501",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21501"
},
{
"name": "CVE-2024-47596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47596"
},
{
"name": "CVE-2022-48285",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48285"
},
{
"name": "CVE-2019-9674",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9674"
},
{
"name": "CVE-2025-30696",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30696"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2020-10650",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10650"
},
{
"name": "CVE-2025-21584",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21584"
},
{
"name": "CVE-2022-0391",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0391"
},
{
"name": "CVE-2020-36189",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36189"
},
{
"name": "CVE-2019-20444",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20444"
},
{
"name": "CVE-2023-34462",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34462"
},
{
"name": "CVE-2018-3824",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3824"
},
{
"name": "CVE-2024-7246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7246"
},
{
"name": "CVE-2024-47602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47602"
},
{
"name": "CVE-2021-20190",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20190"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-47541",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47541"
},
{
"name": "CVE-2024-47774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47774"
},
{
"name": "CVE-2023-50186",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50186"
},
{
"name": "CVE-2024-47599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47599"
},
{
"name": "CVE-2024-47606",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47606"
},
{
"name": "CVE-2019-16335",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16335"
},
{
"name": "CVE-2024-47540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47540"
},
{
"name": "CVE-2023-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3635"
},
{
"name": "CVE-2023-0833",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0833"
},
{
"name": "CVE-2024-47542",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47542"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2018-7489",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7489"
},
{
"name": "CVE-2025-30683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30683"
},
{
"name": "CVE-2025-30699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30699"
},
{
"name": "CVE-2023-27043",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27043"
},
{
"name": "CVE-2025-21531",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21531"
},
{
"name": "CVE-2023-35116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35116"
},
{
"name": "CVE-2025-21555",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21555"
},
{
"name": "CVE-2024-47546",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47546"
},
{
"name": "CVE-2024-47607",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47607"
},
{
"name": "CVE-2021-37137",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37137"
},
{
"name": "CVE-2019-14439",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14439"
},
{
"name": "CVE-2025-21574",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21574"
},
{
"name": "CVE-2025-27888",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27888"
},
{
"name": "CVE-2024-47537",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47537"
},
{
"name": "CVE-2025-21580",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21580"
},
{
"name": "CVE-2024-52979",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52979"
},
{
"name": "CVE-2025-21575",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21575"
},
{
"name": "CVE-2023-6992",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6992"
},
{
"name": "CVE-2025-21540",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21540"
},
{
"name": "CVE-2025-21577",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21577"
},
{
"name": "CVE-2024-47778",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47778"
},
{
"name": "CVE-2022-24823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24823"
},
{
"name": "CVE-2024-5642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5642"
},
{
"name": "CVE-2021-37136",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-37136"
},
{
"name": "CVE-2018-12022",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12022"
},
{
"name": "CVE-2018-5968",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5968"
},
{
"name": "CVE-2024-47777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47777"
},
{
"name": "CVE-2025-30705",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30705"
},
{
"name": "CVE-2021-21295",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21295"
},
{
"name": "CVE-2021-4189",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4189"
},
{
"name": "CVE-2024-47543",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47543"
},
{
"name": "CVE-2019-16943",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16943"
},
{
"name": "CVE-2024-47600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47600"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2021-43797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43797"
},
{
"name": "CVE-2025-30684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30684"
},
{
"name": "CVE-2017-7525",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7525"
},
{
"name": "CVE-2025-22874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22874"
},
{
"name": "CVE-2025-21579",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21579"
},
{
"name": "CVE-2019-17531",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17531"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2023-52428",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52428"
},
{
"name": "CVE-2025-21490",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21490"
},
{
"name": "CVE-2024-47835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47835"
},
{
"name": "CVE-2022-42004",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42004"
},
{
"name": "CVE-2024-47597",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47597"
},
{
"name": "CVE-2025-21520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21520"
},
{
"name": "CVE-2024-47539",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47539"
},
{
"name": "CVE-2021-23413",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23413"
},
{
"name": "CVE-2023-6378",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6378"
},
{
"name": "CVE-2022-4899",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4899"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2022-40146",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40146"
},
{
"name": "CVE-2025-30721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30721"
},
{
"name": "CVE-2022-42890",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42890"
},
{
"name": "CVE-2019-10172",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10172"
},
{
"name": "CVE-2025-21491",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21491"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2020-36518",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36518"
},
{
"name": "CVE-2021-42550",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42550"
},
{
"name": "CVE-2025-30687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30687"
},
{
"name": "CVE-2024-47598",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47598"
},
{
"name": "CVE-2024-47603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47603"
},
{
"name": "CVE-2022-38648",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38648"
},
{
"name": "CVE-2025-21529",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21529"
},
{
"name": "CVE-2025-21559",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21559"
},
{
"name": "CVE-2019-14540",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14540"
},
{
"name": "CVE-2025-21523",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21523"
},
{
"name": "CVE-2025-21518",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21518"
},
{
"name": "CVE-2025-30704",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30704"
},
{
"name": "CVE-2021-21290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21290"
},
{
"name": "CVE-2024-47615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47615"
},
{
"name": "CVE-2025-30693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30693"
},
{
"name": "CVE-2025-21585",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21585"
},
{
"name": "CVE-2017-17485",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17485"
},
{
"name": "CVE-2025-21497",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21497"
},
{
"name": "CVE-2019-14379",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14379"
},
{
"name": "CVE-2024-47776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47776"
},
{
"name": "CVE-2024-47834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47834"
},
{
"name": "CVE-2024-47775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47775"
},
{
"name": "CVE-2025-21581",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21581"
},
{
"name": "CVE-2025-30685",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30685"
},
{
"name": "CVE-2025-30695",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30695"
},
{
"name": "CVE-2025-30688",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30688"
},
{
"name": "CVE-2025-21522",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21522"
},
{
"name": "CVE-2019-16869",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16869"
},
{
"name": "CVE-2025-21546",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21546"
},
{
"name": "CVE-2024-51504",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51504"
},
{
"name": "CVE-2022-41881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41881"
},
{
"name": "CVE-2022-41704",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41704"
},
{
"name": "CVE-2019-14892",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14892"
},
{
"name": "CVE-2019-20445",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20445"
}
],
"initial_release_date": "2025-08-07T00:00:00",
"last_revision_date": "2025-08-07T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0661",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-08-07T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Splunk. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Splunk",
"vendor_advisories": [
{
"published_at": "2025-08-06",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0802",
"url": "https://advisory.splunk.com/advisories/SVD-2025-0802"
},
{
"published_at": "2025-08-06",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0801",
"url": "https://advisory.splunk.com/advisories/SVD-2025-0801"
}
]
}
CERTFR-2024-AVI-1089
Vulnerability from certfr_avis
Une vulnérabilité a été découverte dans Stormshield Stormshield Management Center. Elle permet à un attaquant de provoquer un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Stormshield | Stormshield Management Center | Stormshield Management Center (SMC) versions antérieures à 3.7.0 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Stormshield Management Center (SMC) versions ant\u00e9rieures \u00e0 3.7.0",
"product": {
"name": "Stormshield Management Center",
"vendor": {
"name": "Stormshield",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
}
],
"initial_release_date": "2024-12-17T00:00:00",
"last_revision_date": "2024-12-17T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-1089",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-12-17T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Stormshield Stormshield Management Center. Elle permet \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance.",
"title": "Vuln\u00e9rabilit\u00e9 dans les produits StormShield Management Center",
"vendor_advisories": [
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 StormShield 2024-32",
"url": "https://advisories.stormshield.eu/2024-32"
}
]
}
CERTFR-2025-AVI-0233
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Sterling Control Center | Sterling Control Center versions 6.2.1.x antérieures à 6.2.1.0 iFix15 | ||
| IBM | Qradar Advisor | Qradar Advisor versions antérieures à 2.6.6 | ||
| IBM | AIX | AIX versions 7.2.x et 7.3.x sans les derniers correctifs de sécurité |
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Sterling Control Center versions 6.2.1.x ant\u00e9rieures \u00e0 \t\n6.2.1.0 iFix15",
"product": {
"name": "Sterling Control Center",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Qradar Advisor versions ant\u00e9rieures \u00e0 2.6.6",
"product": {
"name": "Qradar Advisor",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX versions 7.2.x et 7.3.x sans les derniers correctifs de s\u00e9curit\u00e9",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2021-38986",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38986"
},
{
"name": "CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-49766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49766"
},
{
"name": "CVE-2024-34069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34069"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2024-1135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1135"
},
{
"name": "CVE-2024-22195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22195"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2024-56347",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56347"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2023-28439",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28439"
},
{
"name": "CVE-2023-46136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46136"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2024-5569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5569"
},
{
"name": "CVE-2012-5784",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5784"
},
{
"name": "CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"name": "CVE-2018-8032",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-8032"
},
{
"name": "CVE-2024-49767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49767"
},
{
"name": "CVE-2024-4340",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4340"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2019-0227",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-0227"
},
{
"name": "CVE-2024-56346",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56346"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2014-3596",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-3596"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2024-1681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1681"
},
{
"name": "CVE-2024-6221",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6221"
},
{
"name": "CVE-2024-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39689"
},
{
"name": "CVE-2022-22321",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22321"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
}
],
"initial_release_date": "2025-03-21T00:00:00",
"last_revision_date": "2025-03-21T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0233",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-03-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-03-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7186423",
"url": "https://www.ibm.com/support/pages/node/7186423"
},
{
"published_at": "2025-03-19",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7192736",
"url": "https://www.ibm.com/support/pages/node/7192736"
},
{
"published_at": "2025-03-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7186621",
"url": "https://www.ibm.com/support/pages/node/7186621"
}
]
}
CERTFR-2024-AVI-1103
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cognos Analytics | Cognos Analytics versions 12.0.x antérieures à 12.0.4 | ||
| IBM | Sterling | Sterling External Authentication Server versions 6.1.0.x antérieures à 6.1.0.2 ifix 01 | ||
| IBM | QRadar SIEM | Security QRadar Log Management AQL Plugin versions antérieures à 1.1.0 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.0.x antérieures à 6.0.3.1 (fixpack) GA | ||
| IBM | Cognos Analytics | Cognos Analytics versions 11.2.x antérieures à 11.2.4 FP5 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.1.x antérieures à 6.1.0.1 (fixpack) GA | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.2.x antérieures à 6.2.0.0 ifix 01 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.3.x antérieures à 6.3.0.11_ifix001 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cognos Analytics versions 12.0.x ant\u00e9rieures \u00e0 12.0.4",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling External Authentication Server versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.2 ifix 01",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": " Security QRadar Log Management AQL Plugin versions ant\u00e9rieures \u00e0 1.1.0",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.0.x ant\u00e9rieures \u00e0 6.0.3.1 (fixpack) GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Analytics versions 11.2.x ant\u00e9rieures \u00e0 11.2.4 FP5",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.1.x ant\u00e9rieures \u00e0 6.1.0.1 (fixpack) GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.2.x ant\u00e9rieures \u00e0 6.2.0.0 ifix 01",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.11_ifix001",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2010-1205",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1205"
},
{
"name": "CVE-2014-1544",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1544"
},
{
"name": "CVE-2014-1568",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1568"
},
{
"name": "CVE-2015-7182",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7182"
},
{
"name": "CVE-2015-7181",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7181"
},
{
"name": "CVE-2015-7575",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7575"
},
{
"name": "CVE-2016-1938",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1938"
},
{
"name": "CVE-2017-5461",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-5461"
},
{
"name": "CVE-2018-12384",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12384"
},
{
"name": "CVE-2019-7317",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-7317"
},
{
"name": "CVE-2019-11729",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11729"
},
{
"name": "CVE-2019-11727",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11727"
},
{
"name": "CVE-2019-11719",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11719"
},
{
"name": "CVE-2018-12404",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-12404"
},
{
"name": "CVE-2019-11756",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11756"
},
{
"name": "CVE-2019-11745",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11745"
},
{
"name": "CVE-2019-8331",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8331"
},
{
"name": "CVE-2019-11358",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11358"
},
{
"name": "CVE-2019-17023",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17023"
},
{
"name": "CVE-2020-11022",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
},
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
},
{
"name": "CVE-2020-12400",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12400"
},
{
"name": "CVE-2020-12401",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12401"
},
{
"name": "CVE-2020-6829",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-6829"
},
{
"name": "CVE-2019-17006",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17006"
},
{
"name": "CVE-2018-18508",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-18508"
},
{
"name": "CVE-2019-17007",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17007"
},
{
"name": "CVE-2018-20677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20677"
},
{
"name": "CVE-2018-14040",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14040"
},
{
"name": "CVE-2018-14042",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14042"
},
{
"name": "CVE-2016-10735",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10735"
},
{
"name": "CVE-2018-20676",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20676"
},
{
"name": "CVE-2017-12652",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12652"
},
{
"name": "CVE-2020-25648",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25648"
},
{
"name": "CVE-2022-23990",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23990"
},
{
"name": "CVE-2021-45960",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45960"
},
{
"name": "CVE-2022-22827",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22827"
},
{
"name": "CVE-2022-22825",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22825"
},
{
"name": "CVE-2022-22824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22824"
},
{
"name": "CVE-2022-22826",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22826"
},
{
"name": "CVE-2022-23852",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23852"
},
{
"name": "CVE-2022-22823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22823"
},
{
"name": "CVE-2020-12403",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12403"
},
{
"name": "CVE-2021-38153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38153"
},
{
"name": "CVE-2021-43138",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43138"
},
{
"name": "CVE-2022-34749",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34749"
},
{
"name": "CVE-2022-40897",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40897"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2023-0767",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0767"
},
{
"name": "CVE-2023-23931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23931"
},
{
"name": "CVE-2023-2650",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2650"
},
{
"name": "CVE-2023-31130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31130"
},
{
"name": "CVE-2023-32067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32067"
},
{
"name": "CVE-2023-25194",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25194"
},
{
"name": "CVE-2023-3446",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3446"
},
{
"name": "CVE-2023-32681",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32681"
},
{
"name": "CVE-2023-38325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38325"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2023-30774",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30774"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2023-40217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40217"
},
{
"name": "CVE-2023-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4813"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2020-19189",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19189"
},
{
"name": "CVE-2023-5156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5156"
},
{
"name": "CVE-2021-46848",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46848"
},
{
"name": "CVE-2022-21699",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21699"
},
{
"name": "CVE-2023-6237",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
},
{
"name": "CVE-2023-30086",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30086"
},
{
"name": "CVE-2023-26965",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26965"
},
{
"name": "CVE-2023-3316",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3316"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2022-48554",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48554"
},
{
"name": "CVE-2020-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-23064"
},
{
"name": "CVE-2023-5388",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5388"
},
{
"name": "CVE-2023-49083",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49083"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2024-26308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26308"
},
{
"name": "CVE-2024-22195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22195"
},
{
"name": "CVE-2023-50782",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50782"
},
{
"name": "CVE-2023-52426",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52426"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2024-29133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29133"
},
{
"name": "CVE-2024-29131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29131"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2024-22201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22201"
},
{
"name": "CVE-2024-25629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25629"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2024-4367",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4367"
},
{
"name": "CVE-2024-27983",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27983"
},
{
"name": "CVE-2023-51074",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51074"
},
{
"name": "CVE-2024-23944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23944"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-29025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29025"
},
{
"name": "CVE-2024-34102",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34102"
},
{
"name": "CVE-2024-28757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28757"
},
{
"name": "CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2021-36770",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36770"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2023-50495",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50495"
},
{
"name": "CVE-2024-27982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27982"
},
{
"name": "CVE-2023-52356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52356"
},
{
"name": "CVE-2023-6228",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6228"
},
{
"name": "CVE-2023-6277",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6277"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2024-39008",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39008"
},
{
"name": "CVE-2023-3164",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3164"
},
{
"name": "CVE-2024-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22018"
},
{
"name": "CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"name": "CVE-2024-27980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27980"
},
{
"name": "CVE-2024-36137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36137"
},
{
"name": "CVE-2024-36138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36138"
},
{
"name": "CVE-2024-37372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37372"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"name": "CVE-2024-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22871"
},
{
"name": "CVE-2018-15209",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-15209"
},
{
"name": "CVE-2023-37536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37536"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2024-34447",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34447"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2018-14041",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14041"
},
{
"name": "CVE-2024-36114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36114"
},
{
"name": "CVE-2024-25638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25638"
},
{
"name": "CVE-2024-51504",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51504"
},
{
"name": "CVE-2024-7006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7006"
},
{
"name": "CVE-2013-2099",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2099"
},
{
"name": "CVE-2014-1569",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-1569"
},
{
"name": "CVE-2017-11613",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11613"
},
{
"name": "CVE-2017-11695",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11695"
},
{
"name": "CVE-2017-11696",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11696"
},
{
"name": "CVE-2017-11697",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11697"
},
{
"name": "CVE-2017-11698",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11698"
},
{
"name": "CVE-2017-12627",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12627"
},
{
"name": "CVE-2017-18013",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18013"
},
{
"name": "CVE-2017-18869",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18869"
},
{
"name": "CVE-2017-9937",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-9937"
},
{
"name": "CVE-2018-16335",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16335"
},
{
"name": "CVE-2018-17000",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17000"
},
{
"name": "CVE-2018-17100",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17100"
},
{
"name": "CVE-2018-17101",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17101"
},
{
"name": "CVE-2018-19210",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19210"
},
{
"name": "CVE-2018-5784",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-5784"
},
{
"name": "CVE-2018-7456",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7456"
},
{
"name": "CVE-2019-10255",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10255"
},
{
"name": "CVE-2019-14973",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14973"
},
{
"name": "CVE-2019-17546",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17546"
},
{
"name": "CVE-2019-6128",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6128"
},
{
"name": "CVE-2020-15110",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15110"
},
{
"name": "CVE-2020-18768",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-18768"
},
{
"name": "CVE-2020-19131",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19131"
},
{
"name": "CVE-2020-19144",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-19144"
},
{
"name": "CVE-2020-26261",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26261"
},
{
"name": "CVE-2020-35521",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35521"
},
{
"name": "CVE-2020-35522",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35522"
},
{
"name": "CVE-2020-35523",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35523"
},
{
"name": "CVE-2020-35524",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-35524"
},
{
"name": "CVE-2020-36191",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36191"
},
{
"name": "CVE-2021-32862",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32862"
},
{
"name": "CVE-2022-0561",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0561"
},
{
"name": "CVE-2022-0562",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0562"
},
{
"name": "CVE-2022-0891",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0891"
},
{
"name": "CVE-2022-0908",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0908"
},
{
"name": "CVE-2022-2056",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2056"
},
{
"name": "CVE-2022-2057",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2057"
},
{
"name": "CVE-2022-2058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2058"
},
{
"name": "CVE-2022-22844",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22844"
},
{
"name": "CVE-2022-2867",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2867"
},
{
"name": "CVE-2022-2868",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2868"
},
{
"name": "CVE-2022-2869",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2869"
},
{
"name": "CVE-2022-34266",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34266"
},
{
"name": "CVE-2022-34526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34526"
},
{
"name": "CVE-2022-3479",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3479"
},
{
"name": "CVE-2022-3570",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3570"
},
{
"name": "CVE-2022-3597",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3597"
},
{
"name": "CVE-2022-3598",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3598"
},
{
"name": "CVE-2022-3599",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3599"
},
{
"name": "CVE-2022-3626",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3626"
},
{
"name": "CVE-2022-3627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3627"
},
{
"name": "CVE-2022-40090",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40090"
},
{
"name": "CVE-2022-4645",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4645"
},
{
"name": "CVE-2023-0795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0795"
},
{
"name": "CVE-2023-0796",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0796"
},
{
"name": "CVE-2023-0797",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0797"
},
{
"name": "CVE-2023-0798",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0798"
},
{
"name": "CVE-2023-0799",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0799"
},
{
"name": "CVE-2023-0800",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0800"
},
{
"name": "CVE-2023-0801",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0801"
},
{
"name": "CVE-2023-0802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0802"
},
{
"name": "CVE-2023-0803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0803"
},
{
"name": "CVE-2023-0804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0804"
},
{
"name": "CVE-2023-1916",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1916"
},
{
"name": "CVE-2023-24816",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24816"
},
{
"name": "CVE-2023-25434",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25434"
},
{
"name": "CVE-2023-25435",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25435"
},
{
"name": "CVE-2023-2731",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2731"
},
{
"name": "CVE-2023-2908",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2908"
},
{
"name": "CVE-2023-30775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30775"
},
{
"name": "CVE-2023-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3576"
},
{
"name": "CVE-2023-38288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38288"
},
{
"name": "CVE-2023-38289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38289"
},
{
"name": "CVE-2023-40745",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40745"
},
{
"name": "CVE-2023-41175",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41175"
},
{
"name": "CVE-2023-41334",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41334"
},
{
"name": "CVE-2023-4421",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4421"
},
{
"name": "CVE-2023-4759",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4759"
},
{
"name": "CVE-2023-50291",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50291"
},
{
"name": "CVE-2023-50292",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50292"
},
{
"name": "CVE-2023-50298",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50298"
},
{
"name": "CVE-2023-50386",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50386"
},
{
"name": "CVE-2023-50447",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50447"
},
{
"name": "CVE-2024-25016",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25016"
},
{
"name": "CVE-2024-29896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29896"
},
{
"name": "CVE-2024-33883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33883"
},
{
"name": "CVE-2024-38337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38337"
},
{
"name": "CVE-2024-41752",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41752"
},
{
"name": "CVE-2024-45082",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45082"
}
],
"initial_release_date": "2024-12-20T00:00:00",
"last_revision_date": "2024-12-20T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-1103",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-12-20T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177142",
"url": "https://www.ibm.com/support/pages/node/7177142"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177223",
"url": "https://www.ibm.com/support/pages/node/7177223"
},
{
"published_at": "2024-12-16",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179044",
"url": "https://www.ibm.com/support/pages/node/7179044"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179156",
"url": "https://www.ibm.com/support/pages/node/7179156"
},
{
"published_at": "2024-12-17",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7179166",
"url": "https://www.ibm.com/support/pages/node/7179166"
},
{
"published_at": "2024-12-13",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178835",
"url": "https://www.ibm.com/support/pages/node/7178835"
}
]
}
CERTFR-2025-AVI-0170
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cognos Analytics | Cognos Analytics versions 11.2.x antérieures à 12.2.4 IF4 | ||
| IBM | QRadar | QRadar Data Synchronization versions antérieures à 3.2.1 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.1.x antérieures à 6.1.0.1 iFix 02 | ||
| IBM | WebSphere | WebSphere Application Server versions 9.0.x sans le correctif de sécurité temporaire PH16353 ou antérieures à 9.0.5.2 | ||
| IBM | Sterling | Sterling External Authentication Server versions 6.1.x antérieures à 6.1.0.2 iFix 02 | ||
| IBM | Cognos Dashboards | Cognos Dashboards on Cloud Pak for Data versions 4.x sans le dernier correctif de sécurité | ||
| IBM | Cognos Analytics | Cognos Analytics versions 12.0.x antérieures à 12.0.4 IF2 | ||
| IBM | Sterling | Sterling External Authentication Server versions 6.0.x antérieures à 6.0.3.1 iFix 02 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.2.x antérieures à 6.2.0.1 iFix 01 | ||
| IBM | Cognos Dashboards | Cognos Dashboards on Cloud Pak for Data versions 5.x antérieures à 5.1 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cognos Analytics versions 11.2.x ant\u00e9rieures \u00e0 12.2.4 IF4",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Data Synchronization versions ant\u00e9rieures \u00e0 3.2.1",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.1.x ant\u00e9rieures \u00e0 6.1.0.1 iFix 02",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 9.0.x sans le correctif de s\u00e9curit\u00e9 temporaire PH16353 ou ant\u00e9rieures \u00e0 9.0.5.2",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling External Authentication Server versions 6.1.x ant\u00e9rieures \u00e0 6.1.0.2 iFix 02",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Dashboards on Cloud Pak for Data versions 4.x sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Analytics versions 12.0.x ant\u00e9rieures \u00e0 12.0.4 IF2",
"product": {
"name": "Cognos Analytics",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling External Authentication Server versions 6.0.x ant\u00e9rieures \u00e0 6.0.3.1 iFix 02",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.2.x ant\u00e9rieures \u00e0 6.2.0.1 iFix 01",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Dashboards on Cloud Pak for Data versions 5.x ant\u00e9rieures \u00e0 5.1",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"name": "CVE-2021-44906",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44906"
},
{
"name": "CVE-2023-35946",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35946"
},
{
"name": "CVE-2024-21235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21235"
},
{
"name": "CVE-2024-21144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21144"
},
{
"name": "CVE-2015-7450",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-7450"
},
{
"name": "CVE-2022-48554",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48554"
},
{
"name": "CVE-2018-19797",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19797"
},
{
"name": "CVE-2023-28523",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28523"
},
{
"name": "CVE-2021-27290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-27290"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2023-31124",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31124"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2023-23936",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23936"
},
{
"name": "CVE-2018-19827",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19827"
},
{
"name": "CVE-2018-11694",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11694"
},
{
"name": "CVE-2024-39331",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39331"
},
{
"name": "CVE-2022-4904",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4904"
},
{
"name": "CVE-2023-32067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32067"
},
{
"name": "CVE-2024-47561",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47561"
},
{
"name": "CVE-2024-30205",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30205"
},
{
"name": "CVE-2024-40094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40094"
},
{
"name": "CVE-2023-24807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24807"
},
{
"name": "CVE-2025-22150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22150"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-30203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30203"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2024-10917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10917"
},
{
"name": "CVE-2021-35065",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35065"
},
{
"name": "CVE-2023-23920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23920"
},
{
"name": "CVE-2022-24999",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24999"
},
{
"name": "CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"name": "CVE-2023-31147",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31147"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2023-23918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23918"
},
{
"name": "CVE-2024-56340",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56340"
},
{
"name": "CVE-2024-48948",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48948"
},
{
"name": "CVE-2018-25032",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25032"
},
{
"name": "CVE-2024-45216",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45216"
},
{
"name": "CVE-2024-47554",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47554"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2023-28527",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28527"
},
{
"name": "CVE-2024-21147",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21147"
},
{
"name": "CVE-2023-39410",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39410"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2019-6286",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6286"
},
{
"name": "CVE-2022-37434",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-37434"
},
{
"name": "CVE-2018-19839",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-19839"
},
{
"name": "CVE-2024-21140",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21140"
},
{
"name": "CVE-2024-45217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45217"
},
{
"name": "CVE-2024-38999",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38999"
},
{
"name": "CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"name": "CVE-2018-20821",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20821"
},
{
"name": "CVE-2019-6283",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-6283"
},
{
"name": "CVE-2023-35947",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35947"
},
{
"name": "CVE-2022-25881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25881"
},
{
"name": "CVE-2024-21138",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21138"
},
{
"name": "CVE-2023-23919",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23919"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2024-21145",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21145"
},
{
"name": "CVE-2024-50602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50602"
},
{
"name": "CVE-2024-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30204"
},
{
"name": "CVE-2018-20190",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20190"
},
{
"name": "CVE-2023-28526",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28526"
},
{
"name": "CVE-2023-28155",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28155"
},
{
"name": "CVE-2018-11698",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-11698"
},
{
"name": "CVE-2025-0823",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0823"
},
{
"name": "CVE-2023-26136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
},
{
"name": "CVE-2023-31130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31130"
},
{
"name": "CVE-2024-21131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21131"
},
{
"name": "CVE-2024-21210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21210"
},
{
"name": "CVE-2024-21217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21217"
},
{
"name": "CVE-2024-27267",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27267"
},
{
"name": "CVE-2020-7598",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7598"
},
{
"name": "CVE-2024-21208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21208"
}
],
"initial_release_date": "2025-02-28T00:00:00",
"last_revision_date": "2025-02-28T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0170",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-02-28T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7183676",
"url": "https://www.ibm.com/support/pages/node/7183676"
},
{
"published_at": "2019-11-14",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 1107105",
"url": "https://www.ibm.com/support/pages/node/1107105"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7184475",
"url": "https://www.ibm.com/support/pages/node/7184475"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7184474",
"url": "https://www.ibm.com/support/pages/node/7184474"
},
{
"published_at": "2025-02-25",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7184092",
"url": "https://www.ibm.com/support/pages/node/7184092"
},
{
"published_at": "2025-02-27",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7184217",
"url": "https://www.ibm.com/support/pages/node/7184217"
},
{
"published_at": "2025-02-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7184476",
"url": "https://www.ibm.com/support/pages/node/7184476"
}
]
}
CERTFR-2024-AVI-1051
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | VIOS | VIOS version 3.1 sans le correctif invscout_fix7.tar | ||
| IBM | AIX | AIX version 7.3 sans le correctif invscout_fix7.tar | ||
| IBM | Cognos Controller | Cognos Controller versions 11.0.x antérieures à 11.0.1 FP3 | ||
| IBM | AIX | AIX version 7.2 sans le correctif invscout_fix7.tar | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.2.x antérieures à 6.2.2.2 | ||
| IBM | QRadar Use Case Manager App | QRadar Use Case Manager App versions antérieures à 4.0.0 | ||
| IBM | Sterling Partner Engagement Manager Essentials Edition | Sterling Partner Engagement Manager Essentials Edition versions 6.1.x antérieures à 6.1.2.10 | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.1.x antérieures à 6.1.2.10 | ||
| IBM | VIOS | VIOS version 4.1 sans le correctif invscout_fix7.tar | ||
| IBM | Sterling Partner Engagement Manager Standard Edition | Sterling Partner Engagement Manager Standard Edition versions 6.2.x antérieures à 6.2.3.2 |
References
| Title | Publication Time | Tags | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "VIOS version 3.1 sans le correctif invscout_fix7.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.3 sans le correctif invscout_fix7.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Controller versions 11.0.x ant\u00e9rieures \u00e0 11.0.1 FP3",
"product": {
"name": "Cognos Controller",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.2 sans le correctif invscout_fix7.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.2.x ant\u00e9rieures \u00e0 6.2.2.2",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Use Case Manager App versions ant\u00e9rieures \u00e0 4.0.0",
"product": {
"name": "QRadar Use Case Manager App",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Essentials Edition versions 6.1.x ant\u00e9rieures \u00e0 6.1.2.10",
"product": {
"name": "Sterling Partner Engagement Manager Essentials Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.1.x ant\u00e9rieures \u00e0 6.1.2.10",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 sans le correctif invscout_fix7.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Partner Engagement Manager Standard Edition versions 6.2.x ant\u00e9rieures \u00e0 6.2.3.2",
"product": {
"name": "Sterling Partner Engagement Manager Standard Edition",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-20919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20919"
},
{
"name": "CVE-2023-7104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7104"
},
{
"name": "CVE-2023-21938",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21938"
},
{
"name": "CVE-2023-21843",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21843"
},
{
"name": "CVE-2024-47115",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47115"
},
{
"name": "CVE-2021-29425",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29425"
},
{
"name": "CVE-2022-32213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32213"
},
{
"name": "CVE-2021-22959",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22959"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-25020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25020"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2022-35256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35256"
},
{
"name": "CVE-2023-21954",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21954"
},
{
"name": "CVE-2023-21939",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21939"
},
{
"name": "CVE-2024-20926",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20926"
},
{
"name": "CVE-2024-22353",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22353"
},
{
"name": "CVE-2024-41777",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41777"
},
{
"name": "CVE-2024-21890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21890"
},
{
"name": "CVE-2024-21896",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21896"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2021-36690",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-36690"
},
{
"name": "CVE-2023-21830",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21830"
},
{
"name": "CVE-2021-22940",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22940"
},
{
"name": "CVE-2023-23936",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23936"
},
{
"name": "CVE-2023-50312",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-50312"
},
{
"name": "CVE-2021-22930",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22930"
},
{
"name": "CVE-2024-25035",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25035"
},
{
"name": "CVE-2024-20921",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20921"
},
{
"name": "CVE-2023-38737",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38737"
},
{
"name": "CVE-2023-24807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24807"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2021-22918",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22918"
},
{
"name": "CVE-2023-22081",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22081"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2021-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2021-22939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22939"
},
{
"name": "CVE-2021-44532",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44532"
},
{
"name": "CVE-2024-26308",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26308"
},
{
"name": "CVE-2022-0155",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0155"
},
{
"name": "CVE-2021-22960",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22960"
},
{
"name": "CVE-2024-41776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41776"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2024-25019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25019"
},
{
"name": "CVE-2022-32222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32222"
},
{
"name": "CVE-2023-22067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22067"
},
{
"name": "CVE-2022-32212",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32212"
},
{
"name": "CVE-2023-23920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23920"
},
{
"name": "CVE-2024-21634",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21634"
},
{
"name": "CVE-2023-23918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23918"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2021-22921",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22921"
},
{
"name": "CVE-2022-0536",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0536"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2021-29892",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29892"
},
{
"name": "CVE-2024-45676",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45676"
},
{
"name": "CVE-2023-49735",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-49735"
},
{
"name": "CVE-2024-40691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40691"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2023-51775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51775"
},
{
"name": "CVE-2023-21937",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21937"
},
{
"name": "CVE-2024-27268",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27268"
},
{
"name": "CVE-2022-32215",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32215"
},
{
"name": "CVE-2023-33850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33850"
},
{
"name": "CVE-2023-2597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2597"
},
{
"name": "CVE-2023-22045",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22045"
},
{
"name": "CVE-2024-41775",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41775"
},
{
"name": "CVE-2023-22049",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22049"
},
{
"name": "CVE-2023-23919",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23919"
},
{
"name": "CVE-2020-28500",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28500"
},
{
"name": "CVE-2021-22931",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22931"
},
{
"name": "CVE-2023-44483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44483"
},
{
"name": "CVE-2021-44533",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44533"
},
{
"name": "CVE-2023-5676",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5676"
},
{
"name": "CVE-2022-35737",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35737"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2020-8203",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8203"
},
{
"name": "CVE-2022-25857",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25857"
},
{
"name": "CVE-2024-27270",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27270"
},
{
"name": "CVE-2024-21891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21891"
},
{
"name": "CVE-2023-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21968"
},
{
"name": "CVE-2022-32214",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32214"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2022-21824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21824"
},
{
"name": "CVE-2023-21930",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21930"
},
{
"name": "CVE-2024-22017",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22017"
},
{
"name": "CVE-2023-24998",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24998"
},
{
"name": "CVE-2024-20918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
},
{
"name": "CVE-2022-35255",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35255"
},
{
"name": "CVE-2024-25036",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25036"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2021-44531",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44531"
},
{
"name": "CVE-2024-20945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20945"
},
{
"name": "CVE-2023-39332",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39332"
},
{
"name": "CVE-2024-22354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22354"
},
{
"name": "CVE-2023-21967",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21967"
},
{
"name": "CVE-2022-32223",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32223"
},
{
"name": "CVE-2023-26159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26159"
},
{
"name": "CVE-2024-20952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
}
],
"initial_release_date": "2024-12-06T00:00:00",
"last_revision_date": "2024-12-06T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-1051",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-12-06T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-12-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178033",
"url": "https://www.ibm.com/support/pages/node/7178033"
},
{
"published_at": "2024-12-06",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178054",
"url": "https://www.ibm.com/support/pages/node/7178054"
},
{
"published_at": "2024-12-02",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177220",
"url": "https://www.ibm.com/support/pages/node/7177220"
},
{
"published_at": "2024-12-05",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177981",
"url": "https://www.ibm.com/support/pages/node/7177981"
}
]
}
CERTFR-2025-AVI-0546
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | WebSphere | WebSphere Application Server versions 8.5.x sans les derniers correctifs de sécurité | ||
| IBM | WebSphere Service Registry and Repository | WebSphere Service Registry and Repository sans les derniers correctifs de sécurité | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web services versions 6.4.x antérieures à 6.4.0.3 | ||
| IBM | WebSphere | WebSphere Application Server versions 9.0.x sans les derniers correctifs de sécurité | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web services versions 6.3.x antérieures à 6.3.0.14 | ||
| IBM | Spectrum | Spectrum Protect Plus versions 10.1.x antérieures à 10.1.17.1 | ||
| IBM | QRadar | QRadar Hub versions antérieures à 3.8.3 | ||
| IBM | AIX | AIX versions 7.3.x sans les derniers correctif de sécurité | ||
| IBM | Db2 | DB2 Data Management Console pour CPD versions antérieures à 4.8.7 | ||
| IBM | QRadar Deployment Intelligence App | QRadar Deployment Intelligence App versions antérieures à 3.0.17 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "WebSphere Application Server versions 8.5.x sans les derniers correctifs de s\u00e9curit\u00e9",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Service Registry and Repository sans les derniers correctifs de s\u00e9curit\u00e9",
"product": {
"name": "WebSphere Service Registry and Repository",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web services versions 6.4.x ant\u00e9rieures \u00e0 6.4.0.3",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 9.0.x sans les derniers correctifs de s\u00e9curit\u00e9",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web services versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.14",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Spectrum Protect Plus versions 10.1.x ant\u00e9rieures \u00e0 10.1.17.1",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Hub versions ant\u00e9rieures \u00e0 3.8.3",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX versions 7.3.x sans les derniers correctif de s\u00e9curit\u00e9",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "DB2 Data Management Console pour CPD versions ant\u00e9rieures \u00e0 4.8.7",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Deployment Intelligence App versions ant\u00e9rieures \u00e0 3.0.17",
"product": {
"name": "QRadar Deployment Intelligence App",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-25577",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25577"
},
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2025-27516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27516"
},
{
"name": "CVE-2024-49766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49766"
},
{
"name": "CVE-2023-23934",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23934"
},
{
"name": "CVE-2024-34069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34069"
},
{
"name": "CVE-2024-8176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8176"
},
{
"name": "CVE-2020-29651",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29651"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-8305",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8305"
},
{
"name": "CVE-2023-1409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1409"
},
{
"name": "CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"name": "CVE-2024-7553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7553"
},
{
"name": "CVE-2024-36124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36124"
},
{
"name": "CVE-2024-56406",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56406"
},
{
"name": "CVE-2025-27152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27152"
},
{
"name": "CVE-2024-22195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22195"
},
{
"name": "CVE-2024-8207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8207"
},
{
"name": "CVE-2024-3372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3372"
},
{
"name": "CVE-2025-33214",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-33214"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2023-46136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46136"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2019-20916",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20916"
},
{
"name": "CVE-2020-7789",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7789"
},
{
"name": "CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"name": "CVE-2024-49767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49767"
},
{
"name": "CVE-2025-41232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41232"
},
{
"name": "CVE-2025-22870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22870"
},
{
"name": "CVE-2023-1077",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1077"
},
{
"name": "CVE-2025-27789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27789"
},
{
"name": "CVE-2022-42969",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42969"
},
{
"name": "CVE-2023-30861",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30861"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2023-32681",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32681"
},
{
"name": "CVE-2024-56334",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56334"
},
{
"name": "CVE-2020-28493",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28493"
},
{
"name": "CVE-2024-6375",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6375"
},
{
"name": "CVE-2025-36038",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-36038"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
}
],
"initial_release_date": "2025-06-27T00:00:00",
"last_revision_date": "2025-06-27T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0546",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-06-27T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7238297",
"url": "https://www.ibm.com/support/pages/node/7238297"
},
{
"published_at": "2025-06-23",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7237702",
"url": "https://www.ibm.com/support/pages/node/7237702"
},
{
"published_at": "2025-06-25",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7237967",
"url": "https://www.ibm.com/support/pages/node/7237967"
},
{
"published_at": "2025-06-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7238168",
"url": "https://www.ibm.com/support/pages/node/7238168"
},
{
"published_at": "2025-06-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7238156",
"url": "https://www.ibm.com/support/pages/node/7238156"
},
{
"published_at": "2025-06-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7238155",
"url": "https://www.ibm.com/support/pages/node/7238155"
},
{
"published_at": "2025-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7238295",
"url": "https://www.ibm.com/support/pages/node/7238295"
},
{
"published_at": "2025-06-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7238159",
"url": "https://www.ibm.com/support/pages/node/7238159"
}
]
}
CERTFR-2025-AVI-0356
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Splunk User Behavior Analytics (UBA). Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Splunk | Splunk User Behavior Analytics (UBA) | Splunk User Behavior Analytics (UBA) versions 5.4.x antérieures à 5.4.2 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Splunk User Behavior Analytics (UBA) versions 5.4.x ant\u00e9rieures \u00e0 5.4.2",
"product": {
"name": "Splunk User Behavior Analytics (UBA)",
"vendor": {
"name": "Splunk",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2022-40897",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40897"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2023-43804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43804"
},
{
"name": "CVE-2020-26137",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26137"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2019-11236",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11236"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2022-40898",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40898"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
}
],
"initial_release_date": "2025-04-30T00:00:00",
"last_revision_date": "2025-04-30T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0356",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-30T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Splunk User Behavior Analytics (UBA). Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Splunk User Behavior Analytics (UBA)",
"vendor_advisories": [
{
"published_at": "2025-04-29",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0418",
"url": "https://advisory.splunk.com/advisories/SVD-2025-0418"
}
]
}
CERTFR-2024-AVI-1081
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM.Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | QRadar Suite Software | QRadar Suite Software versions antérieures à 1.11.0.0 | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.x antérieures à 7.5.0 UP10 IF02 | ||
| IBM | Cognos Dashboards | Cognos Dashboards on Cloud Pak for Data versions 4.8.x à 5.0.x antérieures à 5.1 | ||
| IBM | QRadar Incident Forensics | QRadar Incident Forensics 7.5.x antérieures à 7.5.0 UP10 IF02 |
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "QRadar Suite Software versions ant\u00e9rieures \u00e0 1.11.0.0",
"product": {
"name": "QRadar Suite Software",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.x ant\u00e9rieures \u00e0 7.5.0 UP10 IF02",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Dashboards on Cloud Pak for Data versions 4.8.x \u00e0 5.0.x ant\u00e9rieures \u00e0 5.1",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Incident Forensics 7.5.x ant\u00e9rieures \u00e0 7.5.0 UP10 IF02",
"product": {
"name": "QRadar Incident Forensics",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-42459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42459"
},
{
"name": "CVE-2024-21536",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21536"
},
{
"name": "CVE-2024-7006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7006"
},
{
"name": "CVE-2024-21235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21235"
},
{
"name": "CVE-2023-43642",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43642"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2023-31582",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31582"
},
{
"name": "CVE-2023-23613",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23613"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2023-37920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37920"
},
{
"name": "CVE-2024-28757",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28757"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-25638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25638"
},
{
"name": "CVE-2022-31160",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-31160"
},
{
"name": "CVE-2023-52426",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52426"
},
{
"name": "CVE-2024-42460",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42460"
},
{
"name": "CVE-2024-3596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3596"
},
{
"name": "CVE-2023-34462",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34462"
},
{
"name": "CVE-2023-34454",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34454"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-38998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38998"
},
{
"name": "CVE-2023-34453",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34453"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2023-35116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35116"
},
{
"name": "CVE-2024-38820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38820"
},
{
"name": "CVE-2024-45491",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45491"
},
{
"name": "CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"name": "CVE-2024-23454",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23454"
},
{
"name": "CVE-2022-41917",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41917"
},
{
"name": "CVE-2024-48949",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-48949"
},
{
"name": "CVE-2024-41755",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41755"
},
{
"name": "CVE-2023-48161",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48161"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2024-38372",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38372"
},
{
"name": "CVE-2023-34455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34455"
},
{
"name": "CVE-2024-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5535"
},
{
"name": "CVE-2024-29131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29131"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2023-36478",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36478"
},
{
"name": "CVE-2024-47554",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47554"
},
{
"name": "CVE-2022-40152",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40152"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2024-25710",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25710"
},
{
"name": "CVE-2019-12900",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-12900"
},
{
"name": "CVE-2024-29133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29133"
},
{
"name": "CVE-2024-41110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41110"
},
{
"name": "CVE-2024-38999",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38999"
},
{
"name": "CVE-2023-52428",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52428"
},
{
"name": "CVE-2024-38986",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38986"
},
{
"name": "CVE-2022-41915",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41915"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2021-22569",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22569"
},
{
"name": "CVE-2024-10041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10041"
},
{
"name": "CVE-2024-10963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10963"
},
{
"name": "CVE-2020-8908",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8908"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-36114",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36114"
},
{
"name": "CVE-2024-52318",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52318"
},
{
"name": "CVE-2024-42461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42461"
},
{
"name": "CVE-2023-33546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33546"
},
{
"name": "CVE-2024-41818",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41818"
},
{
"name": "CVE-2023-2976",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2976"
},
{
"name": "CVE-2024-21210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21210"
},
{
"name": "CVE-2022-3171",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3171"
},
{
"name": "CVE-2024-52317",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52317"
},
{
"name": "CVE-2024-47175",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47175"
},
{
"name": "CVE-2022-23491",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23491"
},
{
"name": "CVE-2024-51504",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51504"
},
{
"name": "CVE-2022-41881",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41881"
},
{
"name": "CVE-2024-52316",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52316"
},
{
"name": "CVE-2024-21217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21217"
},
{
"name": "CVE-2023-23612",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23612"
},
{
"name": "CVE-2024-21208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21208"
}
],
"initial_release_date": "2024-12-13T00:00:00",
"last_revision_date": "2024-12-13T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-1081",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-12-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM.Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-12-11",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7177766",
"url": "https://www.ibm.com/support/pages/node/7177766"
},
{
"published_at": "2024-12-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178224",
"url": "https://www.ibm.com/support/pages/node/7178224"
},
{
"published_at": "2024-12-11",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7178556",
"url": "https://www.ibm.com/support/pages/node/7178556"
}
]
}
CERTFR-2025-AVI-0021
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Security QRadar EDR | Security QRadar EDR versions antérieures à 3.12.14 | ||
| IBM | Spectrum | Spectrum Control versions 5.4.x antérieures à 5.4.13 | ||
| IBM | Spectrum | Spectrum Protect Plus versions 10.1.x antérieures à 10.1.6.4 pour Linux | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.x sans les derniers correctifs de sécurité | ||
| IBM | QRadar | QRadar Analyst Workflow versions antérieures à 2.34.0 | ||
| IBM | Db2 | Db2 Big SQL versions antérieures à 7.4.2 pour Cloud Pak for Data |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Security QRadar EDR versions ant\u00e9rieures \u00e0 3.12.14",
"product": {
"name": "Security QRadar EDR",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Spectrum Control versions 5.4.x ant\u00e9rieures \u00e0 5.4.13 ",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Spectrum Protect Plus versions 10.1.x ant\u00e9rieures \u00e0 10.1.6.4 pour Linux",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.x sans les derniers correctifs de s\u00e9curit\u00e9 ",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Analyst Workflow versions ant\u00e9rieures \u00e0 2.34.0",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Big SQL versions ant\u00e9rieures \u00e0 7.4.2 pour Cloud Pak for Data",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24790"
},
{
"name": "CVE-2023-52471",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52471"
},
{
"name": "CVE-2024-36889",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36889"
},
{
"name": "CVE-2015-2156",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2156"
},
{
"name": "CVE-2023-43642",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43642"
},
{
"name": "CVE-2024-42246",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42246"
},
{
"name": "CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"name": "CVE-2024-26614",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26614"
},
{
"name": "CVE-2022-25869",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25869"
},
{
"name": "CVE-2024-9355",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9355"
},
{
"name": "CVE-2023-26116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26116"
},
{
"name": "CVE-2024-26595",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26595"
},
{
"name": "CVE-2024-55565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55565"
},
{
"name": "CVE-2024-26586",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26586"
},
{
"name": "CVE-2024-26638",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26638"
},
{
"name": "CVE-2024-47831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47831"
},
{
"name": "CVE-2020-7238",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7238"
},
{
"name": "CVE-2021-46939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46939"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-49766",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49766"
},
{
"name": "CVE-2024-36886",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36886"
},
{
"name": "CVE-2021-32036",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32036"
},
{
"name": "CVE-2024-26802",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26802"
},
{
"name": "CVE-2024-36883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36883"
},
{
"name": "CVE-2024-26665",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26665"
},
{
"name": "CVE-2024-40960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40960"
},
{
"name": "CVE-2024-40997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40997"
},
{
"name": "CVE-2023-44270",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44270"
},
{
"name": "CVE-2019-20444",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20444"
},
{
"name": "CVE-2023-34454",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34454"
},
{
"name": "CVE-2024-26645",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26645"
},
{
"name": "CVE-2024-42240",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42240"
},
{
"name": "CVE-2024-40972",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40972"
},
{
"name": "CVE-2024-29025",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29025"
},
{
"name": "CVE-2024-40959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40959"
},
{
"name": "CVE-2023-34453",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34453"
},
{
"name": "CVE-2023-5072",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5072"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2019-10202",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10202"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2021-32040",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32040"
},
{
"name": "CVE-2024-34158",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34158"
},
{
"name": "CVE-2024-40974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40974"
},
{
"name": "CVE-2024-4067",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4067"
},
{
"name": "CVE-2024-42124",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42124"
},
{
"name": "CVE-2023-26117",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26117"
},
{
"name": "CVE-2022-3786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3786"
},
{
"name": "CVE-2023-52486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52486"
},
{
"name": "CVE-2014-0193",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-0193"
},
{
"name": "CVE-2022-21680",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21680"
},
{
"name": "CVE-2024-39502",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39502"
},
{
"name": "CVE-2024-36005",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36005"
},
{
"name": "CVE-2024-26929",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26929"
},
{
"name": "CVE-2019-14863",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14863"
},
{
"name": "CVE-2023-52683",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52683"
},
{
"name": "CVE-2024-42131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42131"
},
{
"name": "CVE-2024-35944",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35944"
},
{
"name": "CVE-2024-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21538"
},
{
"name": "CVE-2023-52469",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52469"
},
{
"name": "CVE-2024-35809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35809"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2023-52809",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52809"
},
{
"name": "CVE-2023-52451",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52451"
},
{
"name": "CVE-2024-39472",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39472"
},
{
"name": "CVE-2023-34455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34455"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2021-21295",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21295"
},
{
"name": "CVE-2024-26733",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26733"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2024-40998",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40998"
},
{
"name": "CVE-2022-46751",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46751"
},
{
"name": "CVE-2023-52470",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52470"
},
{
"name": "CVE-2021-43797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43797"
},
{
"name": "CVE-2020-7676",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7676"
},
{
"name": "CVE-2024-40995",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40995"
},
{
"name": "CVE-2023-26118",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26118"
},
{
"name": "CVE-2024-42238",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42238"
},
{
"name": "CVE-2024-34156",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34156"
},
{
"name": "CVE-2024-43830",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43830"
},
{
"name": "CVE-2024-39501",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39501"
},
{
"name": "CVE-2023-52730",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52730"
},
{
"name": "CVE-2024-42090",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42090"
},
{
"name": "CVE-2024-26960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26960"
},
{
"name": "CVE-2024-40901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40901"
},
{
"name": "CVE-2021-47321",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47321"
},
{
"name": "CVE-2024-26640",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26640"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2024-49767",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49767"
},
{
"name": "CVE-2024-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22018"
},
{
"name": "CVE-2019-10172",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10172"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2024-47874",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47874"
},
{
"name": "CVE-2024-42322",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42322"
},
{
"name": "CVE-2024-27019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27019"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-41055",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41055"
},
{
"name": "CVE-2024-41076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41076"
},
{
"name": "CVE-2024-39506",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39506"
},
{
"name": "CVE-2024-40978",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40978"
},
{
"name": "CVE-2021-21290",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21290"
},
{
"name": "CVE-2019-10768",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10768"
},
{
"name": "CVE-2022-3602",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3602"
},
{
"name": "CVE-2024-41044",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41044"
},
{
"name": "CVE-2024-40958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40958"
},
{
"name": "CVE-2024-26717",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26717"
},
{
"name": "CVE-2023-26136",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26136"
},
{
"name": "CVE-2024-42152",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42152"
},
{
"name": "CVE-2024-39499",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39499"
},
{
"name": "CVE-2024-36006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36006"
},
{
"name": "CVE-2023-52476",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52476"
},
{
"name": "CVE-2023-52463",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52463"
},
{
"name": "CVE-2024-41064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41064"
},
{
"name": "CVE-2024-34155",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34155"
},
{
"name": "CVE-2023-52530",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52530"
},
{
"name": "CVE-2024-36000",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36000"
},
{
"name": "CVE-2024-26855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26855"
},
{
"name": "CVE-2019-16869",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16869"
},
{
"name": "CVE-2022-21681",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21681"
},
{
"name": "CVE-2024-42237",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42237"
},
{
"name": "CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"name": "CVE-2024-27011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27011"
},
{
"name": "CVE-2019-20445",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20445"
}
],
"initial_release_date": "2025-01-10T00:00:00",
"last_revision_date": "2025-01-10T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0021",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-01-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180462",
"url": "https://www.ibm.com/support/pages/node/7180462"
},
{
"published_at": "2025-01-07",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180361",
"url": "https://www.ibm.com/support/pages/node/7180361"
},
{
"published_at": "2025-01-04",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180282",
"url": "https://www.ibm.com/support/pages/node/7180282"
},
{
"published_at": "2025-01-06",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180314",
"url": "https://www.ibm.com/support/pages/node/7180314"
},
{
"published_at": "2025-01-09",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180450",
"url": "https://www.ibm.com/support/pages/node/7180450"
},
{
"published_at": "2025-01-08",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180545",
"url": "https://www.ibm.com/support/pages/node/7180545"
}
]
}
CERTFR-2025-AVI-0003
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Db2 warehouse versions ant\u00e9rieures \u00e0 5.1",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Big SQL versions ant\u00e9rieures \u00e0 7.8",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 versions ant\u00e9rieures \u00e0 5.1",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-37370",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37370"
},
{
"name": "CVE-2023-21938",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21938"
},
{
"name": "CVE-2022-24795",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24795"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2023-30991",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30991"
},
{
"name": "CVE-2023-21954",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21954"
},
{
"name": "CVE-2023-21939",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21939"
},
{
"name": "CVE-2023-38740",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38740"
},
{
"name": "CVE-2023-45283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45283"
},
{
"name": "CVE-2023-38719",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38719"
},
{
"name": "CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"name": "CVE-2023-30987",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-30987"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2022-31163",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-31163"
},
{
"name": "CVE-2024-33883",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33883"
},
{
"name": "CVE-2023-40373",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40373"
},
{
"name": "CVE-2021-41186",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41186"
},
{
"name": "CVE-2024-0406",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0406"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2023-38728",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38728"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-45491",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45491"
},
{
"name": "CVE-2023-38720",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38720"
},
{
"name": "CVE-2024-47554",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47554"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2023-41993",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-41993"
},
{
"name": "CVE-2023-39976",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39976"
},
{
"name": "CVE-2024-41946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41946"
},
{
"name": "CVE-2024-41110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41110"
},
{
"name": "CVE-2023-21937",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21937"
},
{
"name": "CVE-2024-27281",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27281"
},
{
"name": "CVE-2023-33850",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33850"
},
{
"name": "CVE-2022-0759",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0759"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2023-2597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2597"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"name": "CVE-2023-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21968"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2023-21930",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21930"
},
{
"name": "CVE-2024-20918",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20918"
},
{
"name": "CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"name": "CVE-2021-32740",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32740"
},
{
"name": "CVE-2023-40374",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40374"
},
{
"name": "CVE-2024-47220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47220"
},
{
"name": "CVE-2024-6387",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6387"
},
{
"name": "CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"name": "CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"name": "CVE-2024-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39689"
},
{
"name": "CVE-2023-21967",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21967"
},
{
"name": "CVE-2024-41123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41123"
},
{
"name": "CVE-2023-40372",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40372"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2024-20952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-20952"
},
{
"name": "CVE-2024-37371",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37371"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
}
],
"initial_release_date": "2025-01-03T00:00:00",
"last_revision_date": "2025-01-03T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0003",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-03T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-01-02",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180133",
"url": "https://www.ibm.com/support/pages/node/7180133"
},
{
"published_at": "2025-01-02",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180137",
"url": "https://www.ibm.com/support/pages/node/7180137"
},
{
"published_at": "2025-01-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180105",
"url": "https://www.ibm.com/support/pages/node/7180105"
},
{
"published_at": "2025-01-02",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180134",
"url": "https://www.ibm.com/support/pages/node/7180134"
},
{
"published_at": "2025-01-02",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180135",
"url": "https://www.ibm.com/support/pages/node/7180135"
},
{
"published_at": "2025-01-02",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7180138",
"url": "https://www.ibm.com/support/pages/node/7180138"
}
]
}
CERTFR-2024-AVI-1015
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Les vulnérabilités CVE-2024-47875 et CVE-2024-45801 n'ont pas de correctif pour Sterling Connect:Direct Web Services versions 6.1.x et 6.2.x
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | QRadar | QRadar Pre-Validation App versions antérieures à 2.0.1 | ||
| IBM | QRadar | QRadar Pulse App versions antérieures à 2.2.15 | ||
| IBM | WebSphere | WebSphere Hybrid Edition sans le correctif APAR PH63533 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.2.x antérieures à 6.2.0.25 | ||
| IBM | AIX | AIX version 7.3 sans le correctif bind_fix27/73bind918.tar | ||
| IBM | VIOS | VIOS version 3.1 sans le correctif bind_fix27/72bind918.tar | ||
| IBM | WebSphere | WebSphere Application Server Liberty sans le correctif APAR PH63533 | ||
| IBM | Cloud Pak System | Cloud Pak System versions antérieures à 2.3.5.0 pour Power avec le correctif PH60195/PH61002 | ||
| IBM | AIX | AIX version 7.2 sans le correctif bind_fix27/72bind918.tar | ||
| IBM | VIOS | VIOS version 4.1 sans le correctif bind_fix27/73bind918.tar | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.1.x antérieures à 6.1.0.26 | ||
| IBM | Cloud Pak System | Cloud Pak System versions antérieures à 2.3.4.1 pour Intel avec le correctif PH60195/PH61002 | ||
| IBM | Sterling Connect:Direct | Sterling Connect:Direct Web Services versions 6.3.x antérieures à 6.3.0.11 | ||
| IBM | QRadar | QRadar User Behavior Analytics versions antérieures à 4.1.17 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "QRadar Pre-Validation App versions ant\u00e9rieures \u00e0 2.0.1",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Pulse App versions ant\u00e9rieures \u00e0 2.2.15",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Hybrid Edition sans le correctif APAR PH63533",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.2.x ant\u00e9rieures \u00e0 6.2.0.25",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.3 sans le correctif bind_fix27/73bind918.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 3.1 sans le correctif bind_fix27/72bind918.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server Liberty sans le correctif APAR PH63533",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Pak System versions ant\u00e9rieures \u00e0 2.3.5.0 pour Power avec le correctif PH60195/PH61002",
"product": {
"name": "Cloud Pak System",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX version 7.2 sans le correctif bind_fix27/72bind918.tar",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 sans le correctif bind_fix27/73bind918.tar",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.1.x ant\u00e9rieures \u00e0 6.1.0.26",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cloud Pak System versions ant\u00e9rieures \u00e0 2.3.4.1 pour Intel avec le correctif PH60195/PH61002",
"product": {
"name": "Cloud Pak System",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct Web Services versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.11",
"product": {
"name": "Sterling Connect:Direct",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar User Behavior Analytics versions ant\u00e9rieures \u00e0 4.1.17",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "Les vuln\u00e9rabilit\u00e9s CVE-2024-47875 et CVE-2024-45801 n\u0027ont pas de correctif pour Sterling Connect:Direct Web Services versions 6.1.x et 6.2.x",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2024-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43788"
},
{
"name": "CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"name": "CVE-2024-47831",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47831"
},
{
"name": "CVE-2024-4076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4076"
},
{
"name": "CVE-2018-14040",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14040"
},
{
"name": "CVE-2024-43799",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43799"
},
{
"name": "CVE-2024-34351",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34351"
},
{
"name": "CVE-2024-34069",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34069"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2024-0760",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0760"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
},
{
"name": "CVE-2024-45590",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45590"
},
{
"name": "CVE-2024-43796",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43796"
},
{
"name": "CVE-2018-20676",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20676"
},
{
"name": "CVE-2024-1135",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1135"
},
{
"name": "CVE-2024-46982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46982"
},
{
"name": "CVE-2018-20677",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20677"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2024-45801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45801"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2023-51775",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51775"
},
{
"name": "CVE-2024-5569",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5569"
},
{
"name": "CVE-2024-47875",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47875"
},
{
"name": "CVE-2018-14041",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-14041"
},
{
"name": "CVE-2024-43800",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43800"
},
{
"name": "CVE-2016-10735",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-10735"
},
{
"name": "CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2024-38816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38816"
},
{
"name": "CVE-2024-22354",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22354"
},
{
"name": "CVE-2024-39689",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39689"
},
{
"name": "CVE-2023-26159",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-26159"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2019-8331",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-8331"
}
],
"initial_release_date": "2024-11-22T00:00:00",
"last_revision_date": "2024-11-22T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-1015",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-11-22T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-11-20",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176657",
"url": "https://www.ibm.com/support/pages/node/7176657"
},
{
"published_at": "2024-11-20",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176642",
"url": "https://www.ibm.com/support/pages/node/7176642"
},
{
"published_at": "2024-11-20",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176660",
"url": "https://www.ibm.com/support/pages/node/7176660"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176201",
"url": "https://www.ibm.com/support/pages/node/7176201"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176391",
"url": "https://www.ibm.com/support/pages/node/7176391"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176392",
"url": "https://www.ibm.com/support/pages/node/7176392"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176386",
"url": "https://www.ibm.com/support/pages/node/7176386"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176389",
"url": "https://www.ibm.com/support/pages/node/7176389"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176451",
"url": "https://www.ibm.com/support/pages/node/7176451"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176388",
"url": "https://www.ibm.com/support/pages/node/7176388"
},
{
"published_at": "2024-11-18",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7176205",
"url": "https://www.ibm.com/support/pages/node/7176205"
}
]
}
msrc_cve-2024-45590
Vulnerability from csaf_microsoft
Published
2024-09-01 07:00
Modified
2024-12-03 00:00
Summary
body-parser vulnerable to denial of service when url encoding is enabled
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2024-45590 body-parser vulnerable to denial of service when url encoding is enabled - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-45590.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "body-parser vulnerable to denial of service when url encoding is enabled",
"tracking": {
"current_release_date": "2024-12-03T00:00:00.000Z",
"generator": {
"date": "2025-10-20T02:08:32.457Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2024-45590",
"initial_release_date": "2024-09-01T07:00:00.000Z",
"revision_history": [
{
"date": "2024-10-15T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2024-10-16T00:00:00.000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Added reaper to CBL-Mariner 2.0\nAdded python-tensorboard to Azure Linux 3.0"
},
{
"date": "2024-10-25T00:00:00.000Z",
"legacy_version": "1.2",
"number": "3",
"summary": "Added reaper to CBL-Mariner 2.0\nAdded python-tensorboard to Azure Linux 3.0"
},
{
"date": "2024-12-03T00:00:00.000Z",
"legacy_version": "1.3",
"number": "4",
"summary": "Added reaper to CBL-Mariner 2.0\nAdded python-tensorboard to Azure Linux 3.0"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
},
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccbl2 reaper 3.1.1-13",
"product": {
"name": "\u003ccbl2 reaper 3.1.1-13",
"product_id": "5"
}
},
{
"category": "product_version",
"name": "cbl2 reaper 3.1.1-13",
"product": {
"name": "cbl2 reaper 3.1.1-13",
"product_id": "17220"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 reaper 3.1.1-18",
"product": {
"name": "\u003ccbl2 reaper 3.1.1-18",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cbl2 reaper 3.1.1-18",
"product": {
"name": "cbl2 reaper 3.1.1-18",
"product_id": "19820"
}
}
],
"category": "product_name",
"name": "reaper"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 python-tensorboard 2.16.2-5",
"product": {
"name": "\u003cazl3 python-tensorboard 2.16.2-5",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "azl3 python-tensorboard 2.16.2-5",
"product": {
"name": "azl3 python-tensorboard 2.16.2-5",
"product_id": "17632"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 python-tensorboard 2.16.2-6",
"product": {
"name": "\u003cazl3 python-tensorboard 2.16.2-6",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "azl3 python-tensorboard 2.16.2-6",
"product": {
"name": "azl3 python-tensorboard 2.16.2-6",
"product_id": "19693"
}
}
],
"category": "product_name",
"name": "python-tensorboard"
},
{
"category": "product_name",
"name": "cbl2 python-tensorboard 2.11.0-3",
"product": {
"name": "cbl2 python-tensorboard 2.11.0-3",
"product_id": "2"
}
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 reaper 3.1.1-13 as a component of CBL Mariner 2.0",
"product_id": "17086-5"
},
"product_reference": "5",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 reaper 3.1.1-13 as a component of CBL Mariner 2.0",
"product_id": "17220-17086"
},
"product_reference": "17220",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 python-tensorboard 2.16.2-5 as a component of Azure Linux 3.0",
"product_id": "17084-4"
},
"product_reference": "4",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 python-tensorboard 2.16.2-5 as a component of Azure Linux 3.0",
"product_id": "17632-17084"
},
"product_reference": "17632",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 reaper 3.1.1-18 as a component of CBL Mariner 2.0",
"product_id": "17086-1"
},
"product_reference": "1",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 reaper 3.1.1-18 as a component of CBL Mariner 2.0",
"product_id": "19820-17086"
},
"product_reference": "19820",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 python-tensorboard 2.11.0-3 as a component of CBL Mariner 2.0",
"product_id": "17086-2"
},
"product_reference": "2",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 python-tensorboard 2.16.2-6 as a component of Azure Linux 3.0",
"product_id": "17084-3"
},
"product_reference": "3",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 python-tensorboard 2.16.2-6 as a component of Azure Linux 3.0",
"product_id": "19693-17084"
},
"product_reference": "19693",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-45590",
"cwe": {
"id": "CWE-405",
"name": "Asymmetric Resource Consumption (Amplification)"
},
"flags": [
{
"label": "component_not_present",
"product_ids": [
"17086-2"
]
}
],
"notes": [
{
"category": "general",
"text": "GitHub_M",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"17220-17086",
"17632-17084",
"19820-17086",
"19693-17084"
],
"known_affected": [
"17086-5",
"17084-4",
"17086-1",
"17084-3"
],
"known_not_affected": [
"17086-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-45590 body-parser vulnerable to denial of service when url encoding is enabled - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-45590.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2024-10-15T00:00:00.000Z",
"details": "3.1.1-13:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-5",
"17086-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2024-10-15T00:00:00.000Z",
"details": "2.16.2-5:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-4",
"17084-3"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"17086-5",
"17084-4",
"17086-1",
"17084-3"
]
}
],
"title": "body-parser vulnerable to denial of service when url encoding is enabled"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…